last executing test programs:

18.535041789s ago: executing program 0 (id=739):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/3\x00')
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000240)={0x80000011})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000c40)={0x1})
sendmsg$nl_route_sched(r0, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0), 0x60100, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
memfd_create(&(0x7f0000000080)='\b\x9dF\xd8\b\xb3~u\xa5\"\xdc\xfdq\xf6c\r;\xfcO\x8c=\x81\xb1\x8aSpA\xd4\x98\x85D\x89>N\x8ar\x17O\x0fKR\xe2{mn\xcc\xbf2\xc0\xa7\x14\xd0\xd4\xfe/\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97\xe7\xe6\x97\xf9\xb3\xf6\xb9\v\xb5$\xee\x84\x1cn,B\xd5?\xe5E:+Pm\x1d\xb4\xb8', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r3, 0x25817000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
semctl$SEM_STAT(0x0, 0x3, 0x12, 0x0)

17.514752407s ago: executing program 0 (id=740):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="01002cbd7000fb"], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x8080)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

15.558946946s ago: executing program 0 (id=749):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r4, 0x890b, &(0x7f00000009c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bpq0, 0x8, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})

13.165503973s ago: executing program 2 (id=754):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
recvmmsg(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
write$cgroup_devices(r1, &(0x7f0000000440)=ANY=[@ANYBLOB], 0xffdd)

12.205172213s ago: executing program 0 (id=756):
r0 = msgget$private(0x0, 0x152)
msgsnd(r0, &(0x7f00000002c0)={0x3}, 0x8, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0x3, &(0x7f0000000900)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='syzkaller\x00', 0x1, 0xc3, &(0x7f00000002c0)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e}, 0x94)
r2 = socket(0x10, 0x800000000080002, 0x6)
setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f00000000c0)=r1, 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000340)='module_request\x00', r1, 0x0, 0x9}, 0x18)
msgrcv(r0, 0x0, 0x0, 0x3, 0x800)
r3 = io_uring_setup(0x7ac3, &(0x7f0000000080)={0x0, 0xd4fc, 0x10d2})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r3, 0xc, 0x0, 0x14)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000400)=""/141)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r6, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f0000000100)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES8=r4, @ANYBLOB="01000000020000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="4400000010001fff000000008000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000003f00001c0012800b0001006772657461700c000280080007007f00000008000a00", @ANYRES32=r7, @ANYBLOB], 0x44}}, 0x4000)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r4, 0x8983, &(0x7f00000002c0))
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$kcm(0x10, 0x2, 0x0)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000140)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r10}, 0x10)
sendmsg$kcm(r9, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000029008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e00280010000700028000001294", 0x2e}], 0x1}, 0x0)
r11 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r11)
getsockname$packet(r11, &(0x7f0000000100)={0x11, 0x0, <r12=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
r13 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r13, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000000)=@newlink={0x44, 0x10, 0x503, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4230}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD0={0x8}]}}}, @IFLA_ADDRESS={0xa, 0x3, @random="3a712f0756b8"}]}, 0x44}}, 0x2000c000)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r12, @ANYBLOB="01000000010000001c0012000c00010062726964"], 0x3c}}, 0x0)
getsockopt$inet_udp_int(r6, 0x11, 0xb, &(0x7f00000001c0), &(0x7f0000000240)=0x4)

11.854752495s ago: executing program 4 (id=758):
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000000)=@req3={0xf137, 0x6, 0x7, 0x1ff, 0x80, 0x6, 0x1}, 0x1c)
r1 = syz_open_dev$sndpcmp(&(0x7f0000000080), 0x0, 0xa0202)
ioctl$SNDRV_PCM_IOCTL_SYNC_PTR(r1, 0xc0884123, &(0x7f00000000c0)={0x6, "39ed4066619b36be820169c662c25d1f44b3fb2ebd47a94407fc553a58664bdc33f31e601a31beabe02e86ef213f92f7a72db964532859b593c16ca9b33b5eb6", {0xf534, 0x6}})
write$binfmt_script(r0, &(0x7f0000000040)={'#! ', './file0', [{0x20, '#! '}, {0x20, '3! '}, {0x20, 'qyz0'}, {0x20, ':^^'}, {0x20, '#! '}, {0x20, 'syz0'}, {0x20, '&'}], 0xa, "624ca8d38af6"}, 0x2d)
close(r0)
execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f00000000c0)='syzkaller\x00'}, 0xe3)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='contention_end\x00', r4}, 0x10)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x2c, r3, 0x6a98047402e98331, 0x0, 0x0, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8040}, 0x4886)
execve(&(0x7f0000000300)='./file0\x00', &(0x7f0000002200)={[&(0x7f0000000340)='^-%-\\x\\$})\'!&}*', &(0x7f0000000440)='syz0']}, 0x0)

11.209114213s ago: executing program 1 (id=759):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004000}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000004c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="01002cbd7000fb"], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x8080)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

10.740509851s ago: executing program 1 (id=760):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0), 0x12b900, 0x0)
socket(0x11, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xd, 0x4, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], &(0x7f0000000040)='GPL\x00', 0x4, 0x99, &(0x7f0000000180)=""/153, 0x41100, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
r5 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x80000009, 0x2}, 0x10)
r6 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000000)={0x2042, 0xfffffffd}, 0x10)
bind$tipc(r5, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x8000002}}, 0x10)
r7 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CREATE(r7, 0xc02054a5, &(0x7f0000000100)={0x5, r4, 'id1\x00'})
sendmmsg$inet6(r0, 0x0, 0x0, 0x48800)

9.686111746s ago: executing program 1 (id=761):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000740)={'macvlan0\x00', &(0x7f0000000200)=@ethtool_per_queue_op={0x4b, 0x50, [0x3, 0x1, 0x2, 0x1, 0x7f, 0xbcc, 0x8, 0x80, 0x9, 0x4, 0x3, 0xd9, 0x6, 0x7f, 0x9, 0x7, 0x5, 0x7, 0x7, 0x8, 0xc, 0x98800, 0x8, 0x0, 0x1, 0x8, 0x5, 0x1, 0x1, 0x1, 0x8, 0x2, 0x27ac8c95, 0x5, 0x9, 0x10, 0x4, 0x4, 0xffff045b, 0x7fff, 0x10, 0x1, 0x80000001, 0x8, 0x8, 0x9, 0x4006, 0x4e7c, 0x10000, 0x9, 0x8, 0x9bb, 0x1, 0x7, 0x5, 0xf3, 0x2, 0x773, 0x7, 0x6, 0x8, 0x8, 0x7ff, 0xfb47, 0xbdf0, 0x400, 0x9c, 0x10000, 0x6, 0xf, 0x7, 0x1, 0x84, 0xffffff00, 0x5434, 0x6fb9e432, 0x9, 0x7f, 0x10, 0x1, 0x80000000, 0x2, 0x5, 0x0, 0x8000, 0x6, 0x5, 0x3, 0xfffeffff, 0x50, 0xfffffff3, 0x92, 0x878, 0x297, 0x0, 0xffffcc08, 0x16000000, 0x6, 0x1, 0x80000001, 0x1, 0xca6, 0x2, 0x2, 0x8, 0x4, 0x4, 0x2, 0xffffffff, 0x8, 0x4, 0x4, 0x4, 0x0, 0x1ff, 0x4, 0x79d9b987, 0xc, 0x0, 0x232, 0xff, 0x3, 0xffd, 0x3, 0x0, 0xba81, 0x5, 0x4]}})
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r2 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
readv(r2, &(0x7f0000000480)=[{&(0x7f0000000080)=""/87, 0x57}, {&(0x7f0000000100)=""/217, 0xd9}], 0x2)
mmap$dsp(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0xf, 0x12, r2, 0x0)
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x200000, 0x10, &(0x7f0000000000), 0x143}, 0x48)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x0, @dev}, @in={0x2, 0x0, @local}], 0x20)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r4, 0x84, 0x65, &(0x7f00000002c0)=[@in6={0xa, 0x0, 0x0, @mcast1={0xff, 0x3}}], 0x1c)
unlinkat(0xffffffffffffff9c, &(0x7f0000000040)='./file0/file0\x00', 0x0)
write$FUSE_INIT(r1, &(0x7f0000000400)={0x50, 0x0, r3, {0x7, 0x1f, 0x1, 0x50, 0x0, 0x0, 0x5}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000006280)="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", 0x2000, &(0x7f0000000a00)={&(0x7f00000000c0)={0x50, 0x0, 0x100000001, {0x7, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

8.856277499s ago: executing program 3 (id=763):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$sndctrl(&(0x7f00000012c0), 0x1, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/3\x00')
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000240)={0x80000011})
epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r1, &(0x7f0000000c40)={0x1})
sendmsg$nl_route_sched(r0, 0x0, 0x0)
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f00000002c0), 0x60100, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
memfd_create(&(0x7f0000000080)='\b\x9dF\xd8\b\xb3~u\xa5\"\xdc\xfdq\xf6c\r;\xfcO\x8c=\x81\xb1\x8aSpA\xd4\x98\x85D\x89>N\x8ar\x17O\x0fKR\xe2{mn\xcc\xbf2\xc0\xa7\x14\xd0\xd4\xfe/\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97\xe7\xe6\x97\xf9\xb3\xf6\xb9\v\xb5$\xee\x84\x1cn,B\xd5?\xe5E:+Pm\x1d\xb4\xb8', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r3, 0x25817000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
semctl$SEM_STAT(0x0, 0x3, 0x12, 0x0)

7.810888341s ago: executing program 3 (id=764):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}], 0x1)
socket$unix(0x1, 0x1, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
r2 = syz_io_uring_setup(0x893, &(0x7f00000003c0)={0x0, 0xaee1, 0x0, 0x0, 0x1a3}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r1, 0x0, &(0x7f0000001400)={0x0, 0x0, 0x0}, 0x0, 0x40010041})
io_uring_enter(r2, 0x5361, 0xfffffffd, 0x2, 0x0, 0x0)

7.703194814s ago: executing program 3 (id=765):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x8848, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="38000000540001000000000000c4000007008209", @ANYRES32, @ANYBLOB="20000100", @ANYRES32, @ANYBLOB="00000000e000030000000000000000000000000008"], 0x38}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffdfe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
pipe2(&(0x7f00000003c0)={<r4=>0xffffffffffffffff}, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r5, 0x0, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x64, 0x3, 0x300, 0x6e, 0xffffffad, 0x190, 0x190, 0x190, 0x268, 0x268, 0x268, 0x268, 0x268, 0x3, 0x0, {[{{@ip={@remote, @local={0xac, 0x14, 0xd}, 0x0, 0x0, 'caif0\x00', 'ip6tnl0\x00'}, 0x0, 0x130, 0x190, 0xffffffc5, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "bdc74c01369df17d17ac76fa5f9b3bfa0c34430d864040bc25b2b73a59aa6ecab6b1d2cc05e3182f64694d7d05fb8b8c8f56627a54f905d564eeeb8334f650ca0f3c44f7fda4d20a55050342ea85ecc8838e7088de33582f36a0a375bb7008adc297a5ece1bb2df53d17bef26bb6f800", 0x7f, 0x2}}]}, @common=@SET={0x60}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1, 0x0, 0x0, 'team0\x00', 'team0\x00'}, 0x0, 0x98, 0xd8, 0x0, {}, [@common=@inet=@set1={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x360)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB="2c7769aa4a253d", @ANYRESHEX=r5, @ANYBLOB="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"])
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

6.778600686s ago: executing program 4 (id=766):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r4, 0x890b, &(0x7f00000009c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bpq0, 0x8, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})

6.703381423s ago: executing program 3 (id=767):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0x2284, &(0x7f00000000c0)={0x0, 0x2083, 0x0, 0x0})
ioctl$VIDIOC_SUBDEV_S_FMT(0xffffffffffffffff, 0xc0585605, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000280)="0800b685f75b000200fc00ff05ffdf00da8075392313db00", 0x18)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
ioctl$sock_netdev_private(r5, 0x8914, &(0x7f0000000000))
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r6, 0x890b, &(0x7f00000009c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bpq0, 0x8, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)
r7 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r7, 0x84, 0xf, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e22, 0x2, @mcast1, 0x6}}, 0x7, 0x5, 0x9, 0x9, 0x5b95}, &(0x7f0000000000)=0x98)

6.653100018s ago: executing program 0 (id=768):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100009dea7840b418fbff7bdc01020301090212000100000000090401"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000008c0)={0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x10)
r2 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
writev(r2, &(0x7f0000000500)=[{&(0x7f0000000040)="bb", 0x1}], 0x1)

6.321596126s ago: executing program 1 (id=769):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r0 = socket(0x2, 0x80805, 0x0)
setsockopt$sock_int(r0, 0x1, 0x7, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44801}, 0x10040)
r1 = socket$inet6(0xa, 0x3, 0x38)
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet6(r1, &(0x7f0000000000)="800037bbfa9b", 0x6, 0x0, &(0x7f0000001100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
recvmmsg(r1, &(0x7f0000000380)=[{{&(0x7f0000000640)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000140)=""/144, 0x90}, {&(0x7f0000000200)=""/230, 0xe6}, {0x0}, {&(0x7f00000003c0)=""/253, 0xfd}, {&(0x7f00000004c0)=""/208, 0xd0}], 0x5}, 0x3422a61a}], 0x1, 0x10102, 0x0)

6.292661912s ago: executing program 2 (id=770):
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="040e04000418"], 0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
open(0x0, 0x391083, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x140, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_FEATURES(r1, 0x541b, 0x0)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000000)={'ip6tnl0\x00', 0x0})
prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x468, 0xc, 0x5002004a, 0xb, 0x310, 0xea13, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00', {}, {}, 0x6}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{}, {0x16}]}}, @common=@ttl={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4c8)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = dup2(r2, r2)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f0000000b40)=@nat={'nat\x00', 0x62, 0x5, 0x528, 0x0, 0x2a0, 0xffffffff, 0x2a0, 0x2a0, 0x490, 0x490, 0xffffffff, 0x490, 0x490, 0x5, 0x0, {[{{@ip={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'veth0_to_bond\x00', 'wg1\x00'}, 0x0, 0xa8, 0xe0, 0x0, {0x22e}, [@common=@unspec=@statistic={{0x38}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x4f00, {0x0, @multicast1, @remote, @icmp_id, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x3dc, {0x0, @private, @remote, @icmp_id, @gre_key}}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_team\x00', 'ipvlan0\x00'}, 0x0, 0xe0, 0x118, 0x0, {}, [@common=@socket0={{0x20}}, @common=@osf={{0x50}, {'syz0\x00'}}]}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @private, @multicast2, @gre_key, @icmp_id}}}}, {{@ip={@remote, @dev, 0x0, 0x0, 'veth1_to_batadv\x00', 'netdevsim0\x00'}, 0x0, 0x1b8, 0x1f0, 0x0, {}, [@common=@unspec=@comment={{0x120}}, @common=@icmp={{0x28}, {0x0, "6e82"}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x0, @remote, @broadcast, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0xfffffffffffffe9d)
getsockopt$inet_tcp_buf(r3, 0x6, 0x989b96245bcfced, &(0x7f0000000500)=""/80, &(0x7f0000000580)=0x50)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000002000)={0x1, 0x0, 0x200, 0x2})
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f00000031c0)={0x1, 0x0, 0x0, 0x5})
fcntl$lock(0xffffffffffffffff, 0x26, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1})
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1fd)
brk(0x4)
mkdir(&(0x7f00000005c0)='./file0\x00', 0x0)

5.260356351s ago: executing program 1 (id=771):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0xe0000000, 0x5e490420, 0x2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000008340)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4716e26b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb4f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0010000801964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x78, 0x0, 0x80, {0xc, 0x0, 0x0, {0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffe, 0x0, 0x5, 0x0, 0x0, 0x8000, 0x0, 0x0, r2, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
write$FUSE_INIT(r3, 0x0, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000700)=[&(0x7f0000000440)={0x18, 0x700fbff, 0x4, 0x1, 0xfe, r3, 0x0}])

5.093347529s ago: executing program 4 (id=772):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_ethernet(0x72, &(0x7f0000000000)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd60f7d8ff003c3c00fe8000000000000000040000000000aaff0200000000000000000000000000010004000000000000c910ff010000000000000000000000000001c910fc0000000000000000000000000000010000000000000000000c907841000000"], 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x3)
setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
splice(r0, 0x0, 0xffffffffffffffff, 0x0, 0x39000, 0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x408c8, 0xe)
ioctl$sock_inet6_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000040))
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000500)=ANY=[@ANYRESHEX=r1, @ANYBLOB="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", @ANYRES16=r0, @ANYRES16, @ANYRES16, @ANYRESHEX=r0], 0xfffffe3e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r4 = openat$cgroup_devices(r3, &(0x7f0000000480)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r4, &(0x7f00000000c0)=ANY=[@ANYBLOB="62202a3aff2072776d00"], 0xa)
openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000380), 0x20000, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0003}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, 0x0, &(0x7f0000000040)='fusectl\x00', 0x0, 0x0)
rename(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
utimes(&(0x7f0000000440)='./file0\x00', 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14e60000", @ANYRES16=r5, @ANYBLOB="00032abd7000fbdbdf2504000000"], 0x14}, 0x1, 0x0, 0x0, 0x44000}, 0x20000000)
r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="020000000400000000", @ANYRES32=0x0, @ANYBLOB='\x00'/19, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000006000000000000000000000000000018000000000000000000"], 0x50)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x401, 0x0)
r7 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r7, 0x4068aea3, &(0x7f0000000200)={0xc4, 0x0, 0x4})
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000)={0x0, r6}, 0x8)

5.00007787s ago: executing program 2 (id=773):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$fb0(0xffffffffffffff9c, &(0x7f00000000c0), 0x12b900, 0x0)
socket(0x11, 0x2, 0x0)
ioctl$FBIOBLANK(r4, 0x4611, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r6 = socket$tipc(0x1e, 0x5, 0x0)
r7 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r7, 0x10f, 0x87, &(0x7f0000000080)={0x42, 0x80000009, 0x2}, 0x10)
r8 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r8, 0x10f, 0x87, &(0x7f0000000000)={0x2042, 0xfffffffd}, 0x10)
bind$tipc(r6, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x4, 0x8000002}}, 0x10)
r9 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r9, &(0x7f0000000380)={&(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x4}}}, 0x10, 0x0}, 0x0)
r10 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f00000000c0), 0x80000, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CREATE(r10, 0xc02054a5, &(0x7f0000000100)={0x5, r5, 'id1\x00'})
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003400)=[{{&(0x7f0000000080)={0xa, 0x4e24, 0xfffffff9, @private0={0xfc, 0x0, '\x00', 0x1}, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000001440)=ANY=[@ANYRES8], 0x18}}], 0x1, 0x48800)

3.924073303s ago: executing program 4 (id=774):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x22, 0x5, 0x8)
getsockname$packet(r0, 0x0, &(0x7f0000001480))
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
execve(&(0x7f00000190c0)='./file0\x00', 0x0, 0x0)
execve(0x0, 0x0, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x3)
ioctl$VIDIOC_S_STD(r1, 0xc0405627, &(0x7f00000001c0)=0x1700)

3.920933646s ago: executing program 2 (id=775):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}], 0x1)
socket$unix(0x1, 0x1, 0x0)
r1 = socket$rxrpc(0x21, 0x2, 0x2)
r2 = syz_io_uring_setup(0x893, &(0x7f00000003c0)={0x0, 0xaee1, 0x0, 0x0, 0x1a3}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r1, 0x0, &(0x7f0000001400)={0x0, 0x0, 0x0}, 0x0, 0x40010041})
io_uring_enter(r2, 0x5361, 0xfffffffd, 0x2, 0x0, 0x0)

2.838766488s ago: executing program 4 (id=776):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000700)=@deltaction={0x98, 0x31, 0x4, 0x70bd2c, 0x25dfdbfd, {}, [@TCA_ACT_TAB={0x84, 0x1, [{0x14, 0xb, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x8}}, {0x14, 0x1e, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0xc, 0x10, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x9}}, {0xc, 0x6, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x10000}}, {0x10, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}, {0x14, 0x8, 0x0, 0x0, @TCA_ACT_KIND={0xd, 0x1, 'connmark\x00'}}, {0x10, 0x1c, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'csum\x00'}}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)
r3 = syz_init_net_socket$ax25(0x3, 0x2, 0x7)
ioctl$sock_ax25_SIOCADDRT(r3, 0x890b, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x3, &(0x7f0000000580)=ANY=[@ANYBLOB="050000000000000063110c00000000009500a50500000000c285a5ed3ce3d6d6fd0fb3973ba033738462188812b83c8afb1f8b801536bec87af56e5ca1612acd7123854a2db0e85d1f117cc7e32fbe8627518b6768a419360f97b7f0ec33203092009fc00d126bff0100000000000064e7580d0d5206d7a63f1403565b00000000a329454c9b91e7a0a66465c1eb342b7861e4253fdaf9cf67"], &(0x7f00000000c0)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x6}, 0x94)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32, @ANYBLOB="08001b"], 0x34}}, 0x4004010)

2.799858667s ago: executing program 2 (id=777):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0x2284, &(0x7f00000000c0)={0x0, 0x2083, 0x0, 0x0})
ioctl$VIDIOC_SUBDEV_S_FMT(0xffffffffffffffff, 0xc0585605, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000280)="0800b685f75b000200fc00ff05ffdf00da8075392313db00", 0x18)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
ioctl$sock_netdev_private(r5, 0x8914, &(0x7f0000000000))
r6 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r6, 0x890b, &(0x7f00000009c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bpq0, 0x8, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e22, 0x2, @mcast1, 0x6}}, 0x7, 0x5, 0x9, 0x9, 0x5b95}, &(0x7f0000000000)=0x98)

2.735280228s ago: executing program 0 (id=778):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000580), r1)
sendmsg$NFC_CMD_LLC_SDREQ(r2, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000640)={0x1c, r3, 0x1, 0x0, 0x0, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}]}, 0x1c}}, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000280)={0x1c, &(0x7f0000000000)=ANY=[], 0x0, 0x0})

2.546955867s ago: executing program 1 (id=779):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000081000000bfa300000000000007030000f1feffff720a03fef8ffffff71a400fe0000000071101000000000001d300200000000004704000001ed00d20f030000000000001d440000000000006b0a00fe0000000072030000000a0000b500f9ff000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fe51bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616276fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a26048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00e10000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d490cba8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e1461173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdec86f9b1eb93d491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b583cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f806694d461b76a58d88cf0f520310a1e80dc18cde9ad662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a090f3b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c00000000000000f59dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ed1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67cf0216e2d81e6127bd9d7fab28800eaab2355992f8ce4cd38add4b272c0bee4076ca4847ffa691cf78fb7ec212bad3bef29f577ea7159b7f3025b3d977ff7c91024cf71126233cb8791c3c"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x94)
r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))
r1 = syz_open_dev$sndpcmc(&(0x7f0000000300), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_PREPARE(r1, 0x4140, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8}, 0x50)
r2 = socket$nl_route(0x10, 0x3, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x0, 0x3}, 0x10)
r4 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r4, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x1}, 0x10)
sendmsg$tipc(r4, &(0x7f00000008c0)={&(0x7f0000000600)=@name, 0x10, 0x0, 0x0, 0x0, 0x0, 0x81}, 0x80)
r5 = dup3(r3, r4, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r5, 0x0, 0x0)
setsockopt$TIPC_GROUP_LEAVE(r5, 0x10f, 0x88)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r6 = syz_io_uring_setup(0x24f6, 0x0, &(0x7f0000000100)=<r7=>0x0, &(0x7f0000000140)=<r8=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r9, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r9, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x72, 0x4004, @fd=r2, 0x80000000, 0x0, 0x0, 0x5})
io_uring_enter(r6, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0x80045505, &(0x7f0000000040)=@usbdevfs_connect)

1.535440138s ago: executing program 2 (id=780):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4)
recvmmsg(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
write$cgroup_devices(r1, &(0x7f0000000440)=ANY=[@ANYBLOB], 0xffdd)

1.125639691s ago: executing program 3 (id=781):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
r0 = socket(0x2, 0x80805, 0x0)
setsockopt$sock_int(r0, 0x1, 0x7, 0x0, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44801}, 0x10040)
r1 = socket$inet6(0xa, 0x3, 0x38)
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet6(r1, &(0x7f0000000000)="800037bbfa9b", 0x6, 0x0, &(0x7f0000001100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
recvmmsg(r1, &(0x7f0000000380)=[{{&(0x7f0000000640)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000140)=""/144, 0x90}, {&(0x7f0000000200)=""/230, 0xe6}, {0x0}, {&(0x7f00000003c0)=""/253, 0xfd}, {&(0x7f00000004c0)=""/208, 0xd0}], 0x5}, 0x3422a61a}], 0x1, 0x10102, 0x0)

853.631416ms ago: executing program 4 (id=782):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_rose_SIOCADDRT(r4, 0x890b, &(0x7f00000009c0)={@dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, 0x0, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bpq0, 0x8, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]})

0s ago: executing program 3 (id=783):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
connect$rose(r1, &(0x7f0000000340)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, 0x1, @bcast}, 0x1c)
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0, 0x0, <r3=>0x0}, 0x2020)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={0x1c, 0x42, 0xa01, 0x0, 0x0, {0xa}, [@generic="62c1922eabbb"]}, 0x1c}}, 0x0)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0xe0000000, 0x5e490420, 0x2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000008340)="a28096c80abf3543ecde7564abff5085d2227ebcb0f164ae92706ad0b083a3f469a3efd15b4921e9c3063b98b3082068e7c31950dde842eac55df0f991453cad62a6956b0b6f7b8cf49b506a3060fe1127eca99663ade8efa89ee189acb5f3b92f6bc4c46621c803eed0d0bb5f32384870ed08f89d4f74445762fb99715e083c4c92a8878be19ffacc30d0f2da64f971cd40563163adc15670ecf25cd3ad96138967c4b53ad9d04b5193ab5fb674aa0030a9d703d1baf810ce897f969121f142161919e583c275671b999e7f363891dfdfdf3556d01b86ee29eca8fccbfeaf1771395148706cc6e6be7ce29fc9ffef061b5420950c1a525bf75ad06edec51538d1c5bbc77da72dc90fd9998936fffdda2427e5a68966c7e2208f76304680182ec73007e482f034195712af922db2726195d997708734db9e7825a864be00b2a4f800881fc0363f5e618398454f35b148b4ccb88d418269fac868a8ba4a2d5b4f06a1ac01b5ad158b842e05adca22c7372585bf4ce95560b6c1e021a3ed2ff7bd3b6b3c7734c3b66d7e4c460096312082f89b16baa6e73814aa60925780cd92cd65087e260ec046fc363264366a9df2c849c0644911303946adad544521ceb469a3e193ecc9a7876403fac461a4a70d6193b2451189a5c5120b3535e9edf619108af7f517b58abd3fa7fb1ab832213430d2e6901076fba9c9e1acc6c6f48ff0e419bbc45589745a176f52a7407ad5e3dd49acb31b47862806f47077dda04905e45a80a12cbcd4d2dd9fe66c2d1f99394fed8ec60961cd2dc7115a96ece432fac86d51bebb08b95f447a83792fe80291fca7b298c9043ef2c26f0f7e42798d3f54c84b94c24c76c555d83ecc53b99bb22d71845e5cf21a5ba7fbeffeb6306e1730db14561b950a3f24bcfd78d4ab0d97de8054bb1a6077ae7cca6e45d846d3df82298d07212922742cb0facac3b77edfbab90e9ee2d4f7b0ee9b17bb11ec5e5721340d84cb6bd93428167e69b47759172557acda313c3decdfc6fe9336bfade459f43b39d0f2289f9142db280f4ee668e650e12858c577e12e2b9a57ee66c834be97979bcbe94747fa5d8d0b7d3a9f8f218df1bf960f828429a1efe838616b18faf6629236ddbded43a093efae163228e5c38fd7714743c2fcca47e3382bcfb1ab893fd7377527b4ec43f3fa60ebd338161d8de7cad65b15579e4af258f5fe3a63c2637a15703207029b0899b5427767647baef11e291358e6e54f6f13d3d2ca7a5e7969e04d2733b3b9ab822c69a3cfac097384de5071a9b74a656136d55eb190df08747b509fd610ff62b4950ef71c934fe21a48a4931d3d9458b415f112cee65c660f5490e982341da1c58634b3967ca6f3596d20cc90f508382156e36f16539093240ef5f2aa6a2c0dff2a67df30dcf50bf6e0b82a3d49f2d532a8dde1b3ceefcf0837190b74186090d1c18b59917d7efce1adfb238ef4a7b1d22c4cef09320221de883e97e6882466508de06fcdabad3b741bdca2cff879d57ddda52f42b3dcb8a78cfc05826af7e4ff155960ff8491194f4d321ef195990abaeeefdcb852d1e1e3703f317385a9458b6c2dd9db830f757ec29c9939fc7313e639fe485bc1e41ddaaef3fbf1f7cc527c8fad0d21b8082482caad7bee440e5097665f636c3dfec82f8c98afb6243bc3944939675a594277d278ba4361461f7da52e224e4ce5dee4a467bf6ae9f67b61ac6eb0a440406abac2016eec907e241c57f5f44be47290fd0fef785ff04df3810ccd637b4d97a84bae8486a36f75d872e645fe46625969fc2d1f032c56ed44bd98ea27bd9b6ddc8eb2dc2ec9f90f2f1ca1bd20e37ac58b03c84c872f4ba47310654986641460dfdd531ac62a76ad87b89c103ac5c9c2e7e70c66447b3412d4a1e5cbc30e16939505116c04de33ae054ed366de8d1f971c2de439957a194e22a488f58d7efd46439177f3f3c45a1475927eecd846d3d2e6a2ab5c7f8addd99062c2fc6b272d1f51bb8f22f1b6f8bb3faf8aa85e5eb9abf7df5cf8f26267323808b0833a987989cbe59205e7ad06556e2d1b8a4873ca1cbcbc8d43abc145fd4eb832e7a58ab2c793d003ce7b1850ce45eb7480417a1e9eb9d39a1028a2a04a2aa649c098c4f8eee514db5f6021173bb254b8e22b150b2ca01dc7ff235db46ed78d07f43d1adab13b8445d1b32069eb45f9d389fcf5a3f7d3ebe243c5b1fe17b1f5a3d571b65f21b9e471e818172554dc956749b99cb7a5f303ec480d7194a2ba86e204f06aa1becdddc8c49082c527e7064ac2ad77dc05639d3d2a7778f6943ed6105ebf6f0b9e94fddbe05c236ec000f4d1d4e496b10068211ab68ada4c7f7ac61f5f5ba5f1810d5bbe87ff4f8356af0d3f682baedb0ad8f8488b277421f0a03fc5e3095ee34bc4472d8f17e3f7013cf2f79f5ff3ea4b6bae56d1365a33b09bfa9a496323f7da923b7e29dce4beb81035f13130004c96e56d7ef6ca6c101d20c27a218e623227c33c9e488b17e7ae9ac20da8240501f7b614a1730f164553fe479ef149866e4ea47296814284a3d3eb7cbb294289ffb996e0eb053b9c16e54cf267832e3d360eb196ed51305630223309ea97215628f01ec9d3ea48096418d5e962cac5063460f0a18772ec7ce66d14a1cce14b52c40bbbfafccbf1e76f09e57ff0718048e5b993157a6cf4716e26b1e09430413a3596a15c4a620fa8c8e1d1663e5739f9f790ddbb3be0e00187d43717d659242467d8681ac10303346157f894d9037641417010e9654c6a5b22263e73a5a37128f50078a980c30930321aa5c5e7851d5d392ddce3a14a96916fa8421ae6728f37f5de7c3e98feb4babd4e1bd2315d595e209d52748f70adc2284fcdaa6ad880470d2a071f3490aaf3491fb64b4547419e8eccdc491a8921156cb4811ad1e66514a32b0b31b641438881f28c1e6461b4f451938999af671e8c6a5cd0c072a9fe4cdbefe24ca616f3d0a15ac97cca835b1a440e04fa28340c6044176c8ecc8ee0d033d47db8a0aacfa0eabdfa1c9509fc2604008f01cbafeb5bd2b503b809ed672340b9a576593f1ef388391b54b605e7a15bef7b1345627a34fca57738b0f8f4f19eea93c903495274a4425a1a1cc6c4c6e335b631df5185c95b485e4257867b5347a40e4e14dcc560f061fd4fd265137dc68afd548adde778f1330f769acb1ccf5da14ff6992c24e210ea6e6179421881b803393bc6974e37106c5b5b3b5d0b3469f8969bffb7e4ceb2c98e928e74366492d27235ae4c74a2f48511aeeaa53a2beafa7a331b50e454c507af1b63350a5cef35668a5b9325014192277e509561008b3601088f79d42eaa8b1e4ae2000b31749e2b8094312ddb7f3c1cd625ef885c11fa22a66e374b52b3425e0b8016154e1fd8471339e32e7373d63ab646d893fbe09ae07b06074c01401ea76b3c382a9d32f24f93c789964e16bc4206ecd75c10917ab84ffd8d6cdf4cd28fd90375ff28518f8c1a3befc538e1b9e427fb671988d29f2fb2fcd039f4d341c84eb4d7cf600ddaba88bb094e4d87a1419180149f491368e648b69985b05ac39a4ecdd3c5135f3a5c8ad7792dacb6470144bb9e67805a211efb3ec9ccaf8e0901345fb19e4da579e1fbe86a1207f4f13c3436009c2c640b7cf3f8b77ca7bd994bf93308027359c6dd1b7db1e153fc0821968ef36c003b6c73fe890f4de24f5c6458dbaaf3819edeaa91783c3cfc7e773689236248195c7bbd60113f2476fa3687621d668d1728ee433d2f8f4db707345d30f1e52ab87a2a0afd547c6bb06500f59f17facde48f693490e22494b75d11df1a143b85068d143ef6a9bb5937a9df380c8948f1a01e9675e18409edb0f6b9605b68e34632fcce472dc50b90b0f6dcd57931f78e1e8861a0fb62e72b0baad6f9d23c1cfb4f19b25013c8d9fcd786a2f6f79768b5fb398f7b2baa31ce8156d1fc4a46c1c463fdf30360d42aeed2ef11611d0b7f654bb51052fd4dc39328f8ec4c58bbda05e6f1b3c8f6d8adca0268f2410e9a4a7d63b6616006d0e02f6edacc10e5c54fd85f15a8bd7648a293f23d6a699bd9a675250475a73a96d7475e4fabb89fb5e7de5d7a3479aa485c0befc60d0ac4fd5ac6dbecceb06cad86e219fc0ce4720758917811a3215f8d13e413bfb64fc065fc421aede0b56691797dac428c7e463479fa591b9072c309b7533e427c5cc11a1f6cf9a5b995d328d796d874c5b55dfc12a5039b413ce319cf5ba1f355c4e0717d32650b43e18010f37f048731931c52c4f36eb969dda702afe96c2a5241350a67ba2d026946189c5e281293c9a8e2cff3784776f1de78b917101b54e5ab00c045ea15f28a0e3f509962cf8bd3385d85250737eae5c34ece86b86669c13b00308a3b13c0ac3c83ff26fb52a4aa83c1233a9490cb9ca917a056908931751bddb88a62379a713395f0764e4a393faf253a4026d0472270e6036287d56850df1751543484d65b3062155b6300e0024241c59a862ae769c1a9232a2d9fb24705177a09cceb3eefbf9f106f67e01be14cdeb4d2fc7d8661df3e75de5ccd09a7e559f028fb9837c621ea0045b4d1b679067f246339c974631aa7134d4e910efb28d3c48929cef1df7e6c73668762d55086b6c59c36ac90154135fd7ca4e4047dd0aa161fa982d8edf9c0cb9666477e096c55718f6e4742415fefd4f696d1f1ccd6322bc19496ddebd36282a7c707d5b44113e30678e6e33ab7d34be04a59ac614d6a54134490998be02636fa91633d6294781c2b9a54c611c0045cfcfe81f49aa21b29d835cd2047c854486fd8e65a2ebf629f7ced602b9dd107bfde483e5c9b5cbba4a08cdce09920bda9978b7fc2b4a89bf1573a26389e52090fdf5dccf22111dc8c42fd3c8c477092895398086cc22cca665269e193fc650742a361a44b857d258429f701f22e9b7615bc3dab78c1479a41cf8575cdb17169470b347adfc03e03daea3e269725cfc72df5664b9df36d2f2b55013b71133e0b80577a47182511ebb308b6248d457bd2af7b28e77182c305241178c4124ab102771fd5a8c3dacb8775de881301d71587c76bcf0a97a72ad244d0c42fd71aceec32dd48bb5c9a95b391166c832ac5bac8c7cae4d18b3f7d9f2e4782fdf97732e3d51f67bbb57f989ee0d7589dbd0c2a5c63840e914b9d7d720fa120acbffebf816b588b2ccc052e7fa78992e0ea39dd21a122add41195f8e2e1acd777c1a4e8ef4362fef441feb4d9252c6bfbd2742152300a32027776e3341620d3c8d9365e10e81adcca7d87a0e555c98a0353c692557d90ee9be3fbaab766abf93e2462149fd99c92a5fc58d899ee75535cd1fe1386c5ab0b157c2102039d6015258f59cef3f15b951893a30ae839f740402a30b34e7be73796286403c5beb0853d856d83f1b00b48328f56dcb32e1faab08a3435b1482bf18b21c95aefeaafa7fd761c7f28d416fcde06bf7aee5c6e9eb50e55874253ba3f1d0ce2505b4fc7c3fc996bfbb8446bafe84f5bea94bfd7ca5aeaf237fe793b66e5c521d4092e4e1f9bde1dfcfe53fa55005d21cfa833a338fd9792614129336060e10d1911862070761aa20c2902eb7c5a355eff4cf6253d7102a2ca1fead4c53b57d576d104c081310d92797e4e2e8c269d19910d0d4cedf30fa28ba680c00137f83de940624229b6a125ce5233c6cf4a3640b74f58f288dad8451fbe37641c5559a5f3caf1299c8bfb230723652278fe378efd8e459b9da26cffeb58468a6301dbc06d713ba2d8d43d9038f5f2dc8b831ba58a88eeb5b1786b21e398aeeeb7c1f3d6f01d82b3947862fb9e7cbd7da5d04c5fcd34da28d53e2246e3ac1e3a619ad174efa6435eaa0fc94d610799ce0158421dce046306eb5042143daa336d52206b12610ea6389cdda49bf5af1d4ee42ac090a94ae7b7612073f3a5c36a2205eda887f41478f7d20f18667f941f71eebcfa76c1ab28f2a49a3bd56bd3f4e6bd079ab3fe2d94782236e83585a03e52907abaef7456a95d5d3f3d37efdc035dbfd7c41b8ba0af2df8adf1cf24f7ff0beccd3d26bc91caf42314ef7e466f74e19ae0df2e2298fc2f694a7ec134632035585d530e7e19f65c256f001d75382d9825ef741bc213af186377d9ca10d3722354e1897ca5c23ac6a52c9ad0e6b686e1776f7ec65df033e8f4d5db80c1bc354093b319cb70df93d610667675816328c99322f14e636b95f04e6497f139d508b453f53ddb5c289d849fd5407c9bdcefd1642abd46e28cb4e94371bdc606eeb67c9fe17747c68f2d50e82711da4d3edb0eda06f41b7f93fa8fb4d83cf21c79da67000bac2275508217ade1659fa8d24e5f8efb9f4bd21073ebef3d06368eb03fa3cf0d638448bd055ed20d292033ffdba538559c8ff9a2a5c8f83b5c393643d6585d1df994c3be43e72b8f3f53114d2a5f6bcedb573842b23b6a3eb7fca8495bf03bd03fde7b19bd39a16cec49e01f38e671af33cae082d9788e3202799bc466babec2080528d0010000801964719093735b4c1e73bd0705637c47516922197c552baeaf3516b5e3bbc2cd1afa3ef8215196ed580d9561092f620b897e98e786a0c7cbb0eedda8063292ba6482497f5f6bb62fb5ab4c97cb7658dc6579718eb97b547fcf47ced1426561af93a15fb4dc6d3d93b868644943c2c94b23b0570bbb81df2666c24f5abccfcdd71e209f3bb43c01d17f9bc8b9af2c26762fc6a741a150b7d1186e4f35175f3c315243e1c11e92c43a1fc492eef5a13c77a81fcf514ebfd0f8e645dae15a07e86b2f01fda065db4505a5eea83cb616f744f6bee731be191c65449c02603556d5a51422cf9c2f19f8d6843e0c1091e0708aa271e91f71c8602b9fa72189e036b7cb6af1569f21269283de94a6d7fe5849fd433d5b719c80419873db0587fc29786cc598d896fb16360bddd2ce12e54d05418f4f5e5f2d7aafe9fcd6268cbe2e9e6329ffb6c67fab8f3ce673028cc06aaa6b857556bba3b44d3fab5b6e875e70a2f3ad4b2ff76f31ead3462d3801ba373b3c2f545e94f57021575e2947f81f53283fc0a5137fd44fa3d074c92de54a0a3465c858f5a7ef08313faddbc3663e4e0167f3cba39612057a7518fbfb031f5ad0f9f75831973ebd733b82e554bf3fdec84e51f65dab6028c6c51366d9d4700fdf255e4c7bd70766e7f2281b3f2a5363f85ce49f9135904d14bcb117ad754c2594dcdca2d30e40ff265b5accfb116f64ed99aad570c4c5a91efdbb984ac651d8721405a0342cf77f448c17a152eabf29e88950558a86d0074e1cefab1eb7c366682f686ee1338737e675ea58eb8b4c86b9f28a6f6e96459f29e3b4dc59ff044c61a0dcc5c31d803e6e98420e446229ccdec3d0f705e92ffe016bb3696373eadab7f35ccf65ab4d9be09a085ce21bbd7c0555376e4d7fe68b5e7a64f48b5127825fb2be598d991f9c1a54bf52713417dcc599e812d85513a537e6eafa738edc972b67e065595d11678449bce6cd3d69800a649b560d0e057c502ca3e72e97820829ecfea801192c3f4e2c8763c095a43ee6fe45fe8730130937668df1d4ee577ada28238be03286481f2d2a004cc4d48856e71fbd64f1a0043a4520ecbbf1b3abdc96b87a27be8495a20542967aa4cd3a44a11502419a083d84e97abfde0901b66dde48388649a0ed6d93b9f20c530e990c7c52370a114d800d6ab3f6687d6bbc105b63738fe05fa6cac98ad6663936bb18cb923264e44312c24c2ce8e642bb73c921012b68a26a70977446b8f15f9d62467d8b356560c183a6bd6cd76ec868c3bd94a595cd7bf996755a508a814980c5e588b275200c45afd900c8c2de329ec2484b0e3ecd7b0960e5e3425881d1ff7f8bd8b20f5cc98ffc3acb77f5e88775a4bd3ab9f9eb027e27d3af55ebdf4eebab48ea911128d668d00fc3f5b5480aa0d9a4af563ba577384448e5425157133d59e1cef3c722f33700bd372825046b1fa5824e405154a3af1440bc2b75acfbd07cf92e8c162587e74b5ab66b1c6aeab3ad5fa3ee91da4900ef30ad04baea326df912517dd96e1696b4a91faa66675978a375e81f25464a1073dc6737af08d7e25956bb31d438548a7da38662d49db812a8cf1d6cc65f5c63879fd9ee7fd2a66ca3fc1a768cb239aab88c87206470b4c60592afeb6d69ed97a8f990155862ba4e22b64804142c131a23792937aa8a8696e165c24d7692a04bb4471b0f0d2507fe7c8618421428fc7a0acc984ca5cc6bacb772e8a717bbaa646f9643275910a6037afaf5a80678d18edda138a4e13d06d04a5d06431eab48738225cf1567e960e765728dc12e91b91c6f2b33dfb6e033aa68c1c2334d24335abc4a7a1df5636dec29091da54d5f5a1fff41e4a35a0c2f04f968f7d78e2f51c73577e2192bb20f289aaba5a175c2ed533855bd9ed9a842ad482136dd5e0cf45eb5e2d31ff62a3be1cf8a94a58316e74f4ab9fc54f3a0bb83beef0f355993bdea2c83e61cdc796bf2564ae51fae616799e8711998cd88d35cd9824452fdd65226174b46792cb87f4dd282e4e6f67eb66da413ad877ed6ce775f7e19bc93f48bb9e5ec04009de3c042aeacf7f4b25ad6b30e017303f64fe07ac79e8744aab6926d117f13513d0469cef335fe1d0d787c2d0b2c031a9521786ac10e9f8b768271680337f2c3262abdccb5d3107c632bf1f74c83ee91f49988222fb080cc8faa9b1a02526d8b6087e0b2354173d29016b3309587c16f057dd812aa63c3169150de81f3af97d082a8f8da4ce4f909ff649821d7f96d97613552e8cc4902e046ecfa329b1d980ff5ece69b8f1615fdff5244f41cec0af924624ae1641ecae5fa26c5fb9006e57100ee71377ced7c255ae17a0845e2ee0287c62c1852f93877f9f86157ca9675d383fff5cd6f2b001ec0136c07cf37f5ace1853122c2baa1092d418e2a490c4a5c8f56b828ce1bafeef4e77f095d6b4ed99d56f66812cb19be540ebe5d52e7eff2d69cbb8477e11514f7e3604bf9999f78c2f1ca6f60a2216b87fa0f25269c425b7d50709b200912b3b7899c95e12d6e9c4dacc19e327721860e0477a53e6793fbb7fb9704a848f395f48c24a6e79b9e1358cc3497251de88b8d3a7b22c6d8af1a7fab81530d9f0cc98f62debb222b54780d89794238532717b447d71b46a60ed481c21db85b590b31720009695ecffd4ef029964e5d5149622233ac013e960a005c924f73ea82c318455546c53d74aa3f7e2ff26aa074c40a55aba8b08027fc19b596eec6c4f89bae39e74b9aad88344f7cc5ad3eefa5095f2ab47222e9a357ecd71c6700ac576025201490d9e446603dfd4bda7617dd500981b2d2ab8c43882a5208494cb3f8ebc720bca8a7cf6c80bd7aaaf89507bb3412ea490a78973f12cc30413e9df1458917ea3d68b438d424c1314bc8d01939c5a5a842438281e62d0c800dee704b2a6cd3e1e4b885a6b26b894a98765fa3308c9e4b87f93625faecdb17c29a27cd243bf6030a67874ec9f2443cf8154261ac2a834c01cbe1f314ee7aa3ca552e1648cf8b42a63f249e3538026e09e44d69dc259adb0d1a0cbccb5a5dd5d0dccc90d023da79d5634188ff060f7e35a5f9d7ad99546824d63975d4452de876093f4e997dc46eedcd80a9eebf5e4f077fbb10c7d9e19a3419e7b845972a3b62613c5404a209b16fa88e0ff49d7b4f21fecc1f773c5b4be61021e0cab8602c6e8257649303aaeafcbb178e7a460ff07f219c46eb6fe5bf8113723e454003bd707767c107daf4255751daaf8decf35262640058924eb6587868b2c08230b317e97396ebc928ba8d274ca0eed0bfcb637676003c64e8c1e1a0420b6c96a44226061ced41b8448382abd2f3d0c472afcde231fbc9ee90c2f1132f8e2391246f95ad93354c7460e20de996ad0f61b13b27646887a637cede90b94b7d8c3130f0fe060e8d955c711a2700b302a75bdeb32a0a6802ea795cb114f5f82a1a381a86bbff88b299e47728b746dff964c94c52b661b9429376b1320b46081426b7c340206dc0da151bf84be2a49e78b6b5938753d2b1be8d9e67c43c5d70e72519f5f90d0500e84ee38f82b191ac4d968b0a37901fd923cb289d585693ac3c3f8a94fca6df45e694e199a9cd0b1bc1fa7394bcc96aae670dca6605a998793b7e067ac410ba631057b8b76fcbe9524df820c02efef1608b743cd2aa6d60d3d8e476fa12d3acc329f8272b087d89471177ed531fec1f9c24a975ca2fcd8c246a33e291a3f00b7f234052067a0059c86762475256bb5e7dac6f121a0925506b18933c6e314915d4b3b2130aafc2483ef22ff8bb7b887565b1bd22fabca22037d8fc9437f675c5313526266f60bb7c7c47f30c7d567ed142ea5ec367c4298328d20e5344f01c0c90cf8a6302f4d84b6ba7495fba314a05ba29b63bb6d458fdb05a4411136958309f418fb178e19aa09ff9e62b29732fb2986c96e738f7a688cb2122dbb8f2ad9a5f28bc49ec0c462413552afee8e403259b55ad6dc334dde7f2d306929dd01f2aa6036cafd41874522689301b81c9e50e86828894140356db0a3317b081ed9d8148c41e77e6bda6287762532b86eb91f5480915680deb8a91fb8656b7f0109064865d2b846af0861f67d3f720d6e306540cd7b68f095ef3690b88ea93fb6a402ff5697597cda83171f159e85307d1a8c01611189bd4eb4f0453ab88d43ae181a562a76902a67c687514079d6f4304d9a7c0fa24b6e86074ea0a9fd8187c120312078f5ebfa674adc0303734bf8f6b5585943706594192ad24c9f7d9794fb83758924f862855ddd50bff58b522c43d73c03289baec628cd693cab93101b1e473b76532510e10f03e86812fea6f2d6f5467dcf29e6d7cf8524f383a0ded3f0951c3ffb171a6b8a6d97b5fa8899a19f1a3d0e934a1d4741076e4394ba225158f697bf7d5651717c6950229a0be22e8120d76a414edbcd03d505264b7ede8272ccbd6dbdcebaf11daf6a652f6f9eb74ba7a3ecc942892891388005ae5d971e4e79d696564906dffd44845b704a9abc2fa5ba1bb69a548423a08044ad6d0e365db7e6bea0f3844a452759716cb98dcf326001ec90c1c343174098cdf47ea2e13341058ca014d2a30e9ba3c526de72a6e387181bf76a278c9cbc518d8c374a3f1d9802a39464a100903dbec16f8f095f5d82d9d09507281e4f7fe0ce4fbeced193902a5f658af2a4c1d0952dabdc6ae5830b6b5a2c3f5b8d33a73665990822e5f4a7ce5366755a1615543bdf78299c71e890e0bedb6ec277b10a389d6a3ba9c037221421279e51ab50fb115de2076cc99444202e88ebd9d0fbe4e60234b7b761495ac6c9e615ddac8176164a88fb6d6cc2b52672c8949afe3efc1e87a598896bc93e421423844fcaafe65af898a015b3bcaf623ebeef9a57155af5278ceb52b995f7ca466d9e18b05e86380679e0257cff6d0c6750078462f2ee4701d6d8289ed848b877cf5918625b7937060d667c11119881c30809056892352c6c53c01e395af6866ea350e6f21fa3db772c1177c759999973b51e11ffc5908", 0x2000, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x78, 0x0, 0x80, {0xc, 0x0, 0x0, {0x0, 0x0, 0x0, 0xffffffffffffffff, 0xfffffffffffffffe, 0x0, 0x5, 0x0, 0x0, 0x8000, 0x0, 0x0, r3, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
write$FUSE_INIT(r5, 0x0, 0x0)
io_setup(0x2, &(0x7f0000000200)=<r6=>0x0)
io_submit(r6, 0x1, &(0x7f0000000700)=[&(0x7f0000000440)={0x18, 0x700fbff, 0x4, 0x1, 0x0, r5, 0x0}])

kernel console output (not intermixed with test programs):

T6355]  netlink_deliver_tap+0x19c/0x1b0
[  121.630704][ T6355]  netlink_unicast+0x72f/0x8d0
[  121.630742][ T6355]  netlink_sendmsg+0x805/0xb30
[  121.630769][ T6355]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.630795][ T6355]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  121.630816][ T6355]  ? __pfx_netlink_sendmsg+0x10/0x10
[  121.630837][ T6355]  __sock_sendmsg+0x219/0x270
[  121.630866][ T6355]  ____sys_sendmsg+0x505/0x830
[  121.630892][ T6355]  ? __pfx_____sys_sendmsg+0x10/0x10
[  121.630942][ T6355]  ? import_iovec+0x74/0xa0
[  121.630972][ T6355]  ___sys_sendmsg+0x21f/0x2a0
[  121.630994][ T6355]  ? __pfx____sys_sendmsg+0x10/0x10
[  121.631053][ T6355]  ? __fget_files+0x2a/0x420
[  121.631079][ T6355]  ? __fget_files+0x3a0/0x420
[  121.631111][ T6355]  __x64_sys_sendmsg+0x19b/0x260
[  121.631134][ T6355]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  121.631163][ T6355]  ? __pfx_ksys_write+0x10/0x10
[  121.631181][ T6355]  ? rcu_is_watching+0x15/0xb0
[  121.631210][ T6355]  ? do_syscall_64+0xbe/0x3b0
[  121.631239][ T6355]  do_syscall_64+0xfa/0x3b0
[  121.631262][ T6355]  ? lockdep_hardirqs_on+0x9c/0x150
[  121.631285][ T6355]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.631303][ T6355]  ? clear_bhb_loop+0x60/0xb0
[  121.631324][ T6355]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  121.631340][ T6355] RIP: 0033:0x7f3c16b8e929
[  121.631355][ T6355] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.631369][ T6355] RSP: 002b:00007f3c179d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.631386][ T6355] RAX: ffffffffffffffda RBX: 00007f3c16db5fa0 RCX: 00007f3c16b8e929
[  121.631398][ T6355] RDX: 0000000000000004 RSI: 0000200000000040 RDI: 0000000000000003
[  121.631409][ T6355] RBP: 00007f3c179d0090 R08: 0000000000000000 R09: 0000000000000000
[  121.631420][ T6355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.631429][ T6355] R13: 0000000000000000 R14: 00007f3c16db5fa0 R15: 00007ffe8343ce48
[  121.631462][ T6355]  </TASK>
[  121.631647][ T6355] netlink: 'syz.3.120': attribute type 8 has an invalid length.
[  121.638883][   T10] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  121.963424][   T10] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  121.973505][   T10] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  121.984827][   T10] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  122.001343][   T10] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  122.016576][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  122.051448][ T5964] usb 3-1: USB disconnect, device number 2
[  122.982536][   T10] usb 1-1: usb_control_msg returned -71
[  122.998582][   T10] usbtmc 1-1:16.0: can't read capabilities
[  123.047425][   T10] usb 1-1: USB disconnect, device number 3
[  123.759245][   T10] usb 3-1: new full-speed USB device number 3 using dummy_hcd
[  123.939016][   T49] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  123.996785][ T6363] netlink: 'syz.2.122': attribute type 3 has an invalid length.
[  125.051045][   T10] usb 3-1: unable to get BOS descriptor or descriptor too short
[  125.089023][   T49] usb 5-1: Using ep0 maxpacket: 32
[  125.096548][   T49] usb 5-1: config 0 has no interfaces?
[  125.103111][   T49] usb 5-1: New USB device found, idVendor=0543, idProduct=e621, bcdDevice= 0.00
[  125.110129][   T10] usb 3-1: too many configurations: 15, using maximum allowed: 8
[  125.119108][   T49] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.146312][   T49] usb 5-1: config 0 descriptor??
[  125.362169][   T10] usb 3-1: unable to read config index 0 descriptor/start: -71
[  125.685472][ T6371] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  125.714245][ T6371] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  125.717595][   T10] usb 3-1: can't read configurations, error -71
[  126.018987][    T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  126.235380][    T9] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  126.282568][  T979] usb 5-1: USB disconnect, device number 3
[  126.285125][    T9] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  126.322198][    T9] usb 1-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  126.369890][    T9] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  126.401804][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.443671][    T9] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  126.453462][    T9] usb 1-1: invalid MIDI out EP 0
[  127.400178][    T9] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -22
[  127.469406][    T9] usb 1-1: USB disconnect, device number 4
[  127.921730][ T6415] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  127.969185][ T5900] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  128.279392][ T5900] usb 5-1: Using ep0 maxpacket: 8
[  128.347943][ T5900] usb 5-1: unable to get BOS descriptor or descriptor too short
[  128.475634][ T5900] usb 5-1: config 10 has an invalid interface number: 223 but max is 2
[  128.568207][ T5900] usb 5-1: config 10 has an invalid interface number: 79 but max is 2
[  128.696467][ T5900] usb 5-1: config 10 has an invalid descriptor of length 0, skipping remainder of the config
[  128.822936][ T5900] usb 5-1: config 10 has 2 interfaces, different from the descriptor's value: 3
[  129.014053][ T5900] usb 5-1: config 10 has no interface number 0
[  129.134260][ T5900] usb 5-1: config 10 has no interface number 1
[  129.266561][ T5900] usb 5-1: config 10 interface 223 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 15
[  129.557371][ T5900] usb 5-1: config 10 interface 79 altsetting 73 endpoint 0x1 has invalid wMaxPacketSize 0
[  129.824871][ T5900] usb 5-1: config 10 interface 79 altsetting 73 has 4 endpoint descriptors, different from the interface descriptor's value: 5
[  130.087381][ T5900] usb 5-1: config 10 interface 223 has no altsetting 0
[  130.197704][ T5900] usb 5-1: config 10 interface 79 has no altsetting 0
[  131.150093][ T5900] usb 5-1: string descriptor 0 read error: -71
[  131.169755][ T5900] usb 5-1: New USB device found, idVendor=2013, idProduct=025d, bcdDevice=a3.4b
[  131.178828][ T5900] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  131.863474][ T5900] usb 5-1: can't set config #10, error -71
[  131.871496][ T5900] usb 5-1: USB disconnect, device number 4
[  132.620965][ T6450] autofs: Unknown parameter 'syzkaller0'
[  132.684041][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  132.697774][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  132.995111][ T6451] block device autoloading is deprecated and will be removed.
[  133.040297][ T6451] syz.4.143: attempt to access beyond end of device
[  133.040297][ T6451] md0: rw=2048, sector=0, nr_sectors = 8 limit=0
[  133.816622][  T979] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  133.833311][ T6461] FAULT_INJECTION: forcing a failure.
[  133.833311][ T6461] name failslab, interval 1, probability 0, space 0, times 0
[  133.846168][ T6461] CPU: 0 UID: 0 PID: 6461 Comm: syz.0.147 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  133.846188][ T6461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  133.846199][ T6461] Call Trace:
[  133.846206][ T6461]  <TASK>
[  133.846213][ T6461]  dump_stack_lvl+0x189/0x250
[  133.846243][ T6461]  ? __pfx____ratelimit+0x10/0x10
[  133.846267][ T6461]  ? __pfx_dump_stack_lvl+0x10/0x10
[  133.846292][ T6461]  ? __pfx__printk+0x10/0x10
[  133.846313][ T6461]  ? __rt6_find_exception_rcu+0x127/0x4c0
[  133.846345][ T6461]  should_fail_ex+0x414/0x560
[  133.846370][ T6461]  should_failslab+0xa8/0x100
[  133.846392][ T6461]  ? __pfx_ip6_dst_gc+0x10/0x10
[  133.846416][ T6461]  kmem_cache_alloc_noprof+0x73/0x3c0
[  133.846436][ T6461]  ? dst_alloc+0x105/0x170
[  133.846457][ T6461]  ? __pfx_ip6_dst_gc+0x10/0x10
[  133.846483][ T6461]  dst_alloc+0x105/0x170
[  133.846508][ T6461]  ip6_pol_route+0xa21/0x1180
[  133.846524][ T6461]  ? ip6_pol_route+0x162/0x1180
[  133.846544][ T6461]  ? __pfx_ip6_pol_route+0x10/0x10
[  133.846560][ T6461]  ? __lock_acquire+0xab9/0xd20
[  133.846596][ T6461]  fib6_rule_lookup+0x52f/0x6f0
[  133.846614][ T6461]  ? __pfx_ip6_pol_route_input+0x10/0x10
[  133.846632][ T6461]  ? __pfx_fib6_rule_lookup+0x10/0x10
[  133.846676][ T6461]  ? ip6t_do_table+0x1db/0x1550
[  133.846725][ T6461]  ip6_route_input+0x6ce/0xa50
[  133.846753][ T6461]  ? __pfx_ip6_route_input+0x10/0x10
[  133.846785][ T6461]  ? nf_nat_ipv6_in+0x1fc/0x2b0
[  133.846831][ T6461]  ? ip6_rcv_finish_core+0x222/0x420
[  133.846860][ T6461]  ip6_rcv_finish+0x141/0x2d0
[  133.846889][ T6461]  NF_HOOK+0x309/0x3a0
[  133.846912][ T6461]  ? skb_orphan+0x4f/0xd0
[  133.846938][ T6461]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  133.846962][ T6461]  ? NF_HOOK+0x9a/0x3a0
[  133.846986][ T6461]  ? __pfx_NF_HOOK+0x10/0x10
[  133.847013][ T6461]  ? __pfx_ip6_rcv_finish+0x10/0x10
[  133.847050][ T6461]  __netif_receive_skb+0xd3/0x380
[  133.847085][ T6461]  ? netif_receive_skb+0x115/0x790
[  133.847120][ T6461]  netif_receive_skb+0x1cb/0x790
[  133.847148][ T6461]  ? __pfx___local_bh_disable_ip+0x10/0x10
[  133.847178][ T6461]  ? __pfx_netif_receive_skb+0x10/0x10
[  133.847213][ T6461]  ? tun_rx_batched+0x160/0x730
[  133.847243][ T6461]  tun_rx_batched+0x1b9/0x730
[  133.847278][ T6461]  ? __lock_acquire+0xab9/0xd20
[  133.847308][ T6461]  ? __pfx_tun_rx_batched+0x10/0x10
[  133.847340][ T6461]  ? tun_get_user+0x2549/0x3ce0
[  133.847384][ T6461]  tun_get_user+0x298e/0x3ce0
[  133.847414][ T6461]  ? tun_get_user+0x693/0x3ce0
[  133.847440][ T6461]  ? tun_get_user+0x2549/0x3ce0
[  133.847485][ T6461]  ? __pfx_tun_get_user+0x10/0x10
[  133.847521][ T6461]  ? __lock_acquire+0xab9/0xd20
[  133.847554][ T6461]  ? ref_tracker_alloc+0x318/0x460
[  133.847576][ T6461]  ? __lock_acquire+0xab9/0xd20
[  133.847603][ T6461]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  133.847634][ T6461]  ? tun_get+0x1c/0x2f0
[  133.847668][ T6461]  ? tun_get+0x1c/0x2f0
[  133.847693][ T6461]  ? tun_get+0x1c/0x2f0
[  133.847726][ T6461]  tun_chr_write_iter+0x113/0x200
[  133.847756][ T6461]  vfs_write+0x548/0xa90
[  133.847786][ T6461]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  133.847814][ T6461]  ? __pfx_vfs_write+0x10/0x10
[  133.847863][ T6461]  ? __fget_files+0x2a/0x420
[  133.847911][ T6461]  ksys_write+0x145/0x250
[  133.847934][ T6461]  ? __pfx_ksys_write+0x10/0x10
[  133.847952][ T6461]  ? rcu_is_watching+0x15/0xb0
[  133.847997][ T6461]  ? do_syscall_64+0xbe/0x3b0
[  133.848047][ T6461]  do_syscall_64+0xfa/0x3b0
[  133.848086][ T6461]  ? lockdep_hardirqs_on+0x9c/0x150
[  133.848116][ T6461]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.848134][ T6461]  ? clear_bhb_loop+0x60/0xb0
[  133.848174][ T6461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  133.848194][ T6461] RIP: 0033:0x7fc5b718d3df
[  133.848211][ T6461] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  133.848226][ T6461] RSP: 002b:00007fc5b8069000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  133.848246][ T6461] RAX: ffffffffffffffda RBX: 00007fc5b73b5fa0 RCX: 00007fc5b718d3df
[  133.848260][ T6461] RDX: 0000000000000082 RSI: 0000200000000040 RDI: 00000000000000c8
[  133.848273][ T6461] RBP: 00007fc5b8069090 R08: 0000000000000000 R09: 0000000000000000
[  133.848284][ T6461] R10: 0000000000000082 R11: 0000000000000293 R12: 0000000000000001
[  133.848296][ T6461] R13: 0000000000000000 R14: 00007fc5b73b5fa0 R15: 00007ffce69d2c48
[  133.848327][ T6461]  </TASK>
[  134.699021][  T979] usb 3-1: Using ep0 maxpacket: 8
[  134.706034][  T979] usb 3-1: config index 0 descriptor too short (expected 16411, got 27)
[  134.718403][  T979] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  135.111827][  T979] usb 3-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  135.140031][  T979] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  135.148390][  T979] usb 3-1: Product: syz
[  135.155773][  T979] usb 3-1: Manufacturer: syz
[  135.162399][  T979] usb 3-1: SerialNumber: syz
[  135.305663][  T979] usb 3-1: config 0 descriptor??
[  135.804343][  T979] usb 3-1: can't set config #0, error -71
[  135.811745][  T979] usb 3-1: USB disconnect, device number 5
[  135.909298][ T6482] netlink: 4 bytes leftover after parsing attributes in process `syz.4.153'.
[  135.918338][ T6482] netlink: 4 bytes leftover after parsing attributes in process `syz.4.153'.
[  135.927609][ T6482] netlink: 4 bytes leftover after parsing attributes in process `syz.4.153'.
[  135.970086][ T6483] input: syz0 as /devices/virtual/input/input7
[  135.999590][   T49] IPVS: starting estimator thread 0...
[  136.060737][ T6491] FAULT_INJECTION: forcing a failure.
[  136.060737][ T6491] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  136.463573][ T6487] IPVS: using max 30 ests per chain, 72000 per kthread
[  136.480652][ T6491] CPU: 0 UID: 0 PID: 6491 Comm: syz.3.156 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  136.480678][ T6491] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  136.480689][ T6491] Call Trace:
[  136.480698][ T6491]  <TASK>
[  136.480706][ T6491]  dump_stack_lvl+0x189/0x250
[  136.480739][ T6491]  ? __pfx____ratelimit+0x10/0x10
[  136.480765][ T6491]  ? __pfx_dump_stack_lvl+0x10/0x10
[  136.480791][ T6491]  ? __pfx__printk+0x10/0x10
[  136.480821][ T6491]  should_fail_ex+0x414/0x560
[  136.480847][ T6491]  _copy_to_user+0x31/0xb0
[  136.480884][ T6491]  simple_read_from_buffer+0xe1/0x170
[  136.480911][ T6491]  proc_fail_nth_read+0x1df/0x250
[  136.480939][ T6491]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  136.480967][ T6491]  ? rw_verify_area+0x258/0x650
[  136.480985][ T6491]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  136.481010][ T6491]  vfs_read+0x1fd/0x980
[  136.481034][ T6491]  ? __pfx___mutex_lock+0x10/0x10
[  136.481060][ T6491]  ? __pfx_vfs_read+0x10/0x10
[  136.481080][ T6491]  ? __fget_files+0x2a/0x420
[  136.481106][ T6491]  ? __fget_files+0x3a0/0x420
[  136.481128][ T6491]  ? __fget_files+0x2a/0x420
[  136.481159][ T6491]  ksys_read+0x145/0x250
[  136.481176][ T6491]  ? __fget_files+0x3a0/0x420
[  136.481199][ T6491]  ? __pfx_ksys_read+0x10/0x10
[  136.481223][ T6491]  ? do_syscall_64+0xbe/0x3b0
[  136.481252][ T6491]  do_syscall_64+0xfa/0x3b0
[  136.481275][ T6491]  ? lockdep_hardirqs_on+0x9c/0x150
[  136.481298][ T6491]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.481314][ T6491]  ? clear_bhb_loop+0x60/0xb0
[  136.481335][ T6491]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  136.481352][ T6491] RIP: 0033:0x7f3c16b8d33c
[  136.481367][ T6491] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  136.481381][ T6491] RSP: 002b:00007f3c179d0030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  136.481399][ T6491] RAX: ffffffffffffffda RBX: 00007f3c16db5fa0 RCX: 00007f3c16b8d33c
[  136.481412][ T6491] RDX: 000000000000000f RSI: 00007f3c179d00a0 RDI: 0000000000000004
[  136.481422][ T6491] RBP: 00007f3c179d0090 R08: 0000000000000000 R09: 0000000000000000
[  136.481432][ T6491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  136.481442][ T6491] R13: 0000000000000000 R14: 00007f3c16db5fa0 R15: 00007ffe8343ce48
[  136.481469][ T6491]  </TASK>
[  137.756888][ T6476] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  140.425709][ T6532] fuse: Bad value for 'fd'
[  141.173682][ T6537] netlink: 12 bytes leftover after parsing attributes in process `syz.1.171'.
[  141.192475][ T6537] netlink: 12 bytes leftover after parsing attributes in process `syz.1.171'.
[  142.184780][ T6552] FAULT_INJECTION: forcing a failure.
[  142.184780][ T6552] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  142.210036][ T6552] CPU: 1 UID: 0 PID: 6552 Comm: syz.3.173 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  142.210060][ T6552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  142.210071][ T6552] Call Trace:
[  142.210078][ T6552]  <TASK>
[  142.210086][ T6552]  dump_stack_lvl+0x189/0x250
[  142.210117][ T6552]  ? __pfx____ratelimit+0x10/0x10
[  142.210143][ T6552]  ? __pfx_dump_stack_lvl+0x10/0x10
[  142.210170][ T6552]  ? __pfx__printk+0x10/0x10
[  142.210188][ T6552]  ? __might_fault+0xb0/0x130
[  142.210220][ T6552]  should_fail_ex+0x414/0x560
[  142.210245][ T6552]  _copy_from_user+0x2d/0xb0
[  142.210274][ T6552]  ___sys_sendmsg+0x158/0x2a0
[  142.210297][ T6552]  ? __pfx____sys_sendmsg+0x10/0x10
[  142.210353][ T6552]  ? __fget_files+0x2a/0x420
[  142.210376][ T6552]  ? __fget_files+0x3a0/0x420
[  142.210410][ T6552]  __x64_sys_sendmsg+0x19b/0x260
[  142.210441][ T6552]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  142.210471][ T6552]  ? __pfx_ksys_write+0x10/0x10
[  142.210489][ T6552]  ? rcu_is_watching+0x15/0xb0
[  142.210520][ T6552]  ? do_syscall_64+0xbe/0x3b0
[  142.210550][ T6552]  do_syscall_64+0xfa/0x3b0
[  142.210578][ T6552]  ? lockdep_hardirqs_on+0x9c/0x150
[  142.210603][ T6552]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.210620][ T6552]  ? clear_bhb_loop+0x60/0xb0
[  142.210642][ T6552]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  142.210660][ T6552] RIP: 0033:0x7f3c16b8e929
[  142.210677][ T6552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  142.210691][ T6552] RSP: 002b:00007f3c179d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  142.210710][ T6552] RAX: ffffffffffffffda RBX: 00007f3c16db5fa0 RCX: 00007f3c16b8e929
[  142.210724][ T6552] RDX: 0000000000000000 RSI: 00002000000007c0 RDI: 0000000000000004
[  142.210735][ T6552] RBP: 00007f3c179d0090 R08: 0000000000000000 R09: 0000000000000000
[  142.210745][ T6552] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  142.210755][ T6552] R13: 0000000000000000 R14: 00007f3c16db5fa0 R15: 00007ffe8343ce48
[  142.210783][ T6552]  </TASK>
[  142.423985][    C1] vkms_vblank_simulate: vblank timer overrun
[  144.407730][ T6574] fuse: Bad value for 'fd'
[  145.119141][   T49] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  145.439039][   T49] usb 2-1: Using ep0 maxpacket: 8
[  145.538272][   T49] usb 2-1: unable to get BOS descriptor or descriptor too short
[  145.694933][   T49] usb 2-1: config 10 has an invalid interface number: 223 but max is 2
[  145.809690][   T49] usb 2-1: config 10 has an invalid interface number: 79 but max is 2
[  145.922943][   T49] usb 2-1: config 10 has an invalid descriptor of length 0, skipping remainder of the config
[  146.096543][   T49] usb 2-1: config 10 has 2 interfaces, different from the descriptor's value: 3
[  146.243299][   T49] usb 2-1: config 10 has no interface number 0
[  146.347395][   T49] usb 2-1: config 10 has no interface number 1
[  146.456329][   T49] usb 2-1: config 10 interface 223 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 15
[  146.682263][   T49] usb 2-1: config 10 interface 79 altsetting 73 endpoint 0x1 has invalid wMaxPacketSize 0
[  146.871370][   T49] usb 2-1: config 10 interface 79 altsetting 73 has 4 endpoint descriptors, different from the interface descriptor's value: 5
[  147.117130][   T49] usb 2-1: config 10 interface 223 has no altsetting 0
[  147.265767][   T49] usb 2-1: config 10 interface 79 has no altsetting 0
[  147.629061][   T49] usb 2-1: New USB device found, idVendor=2013, idProduct=025d, bcdDevice=a3.4b
[  147.648468][   T49] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.662703][ T6591] cgroup: No subsys list or none specified
[  148.459013][ T6594] capability: warning: `syz.3.185' uses deprecated v2 capabilities in a way that may be insecure
[  148.703540][   T49] usb 2-1: Product: syz
[  148.707903][   T49] usb 2-1: Manufacturer: syz
[  148.824305][   T49] usb 2-1: SerialNumber: syz
[  148.906349][   T49] usb 2-1: can't set config #10, error -71
[  149.854014][   T49] usb 2-1: USB disconnect, device number 6
[  151.805228][ T5938] IPVS: starting estimator thread 0...
[  151.883661][ T6614] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  152.179002][ T6617] IPVS: using max 32 ests per chain, 76800 per kthread
[  153.487020][ T6637] IPv6: sit1: Disabled Multicast RS
[  153.639016][ T5938] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  153.811559][ T5938] usb 4-1: Using ep0 maxpacket: 8
[  153.820176][ T6642] fuse: Bad value for 'fd'
[  153.820196][ T5938] usb 4-1: config 0 has an invalid interface number: 218 but max is 0
[  153.833647][ T5938] usb 4-1: config 0 has no interface number 0
[  153.843036][ T5938] usb 4-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice=e0.df
[  153.854831][ T5938] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.863083][ T5938] usb 4-1: Product: syz
[  153.867324][ T5938] usb 4-1: Manufacturer: syz
[  153.873986][ T5938] usb 4-1: SerialNumber: syz
[  153.884317][ T5938] usb 4-1: config 0 descriptor??
[  153.895261][ T5938] usb 4-1: selecting invalid altsetting 1
[  153.901158][ T5938] usb 4-1: Can not set alternate setting to 1, error: -22
[  153.908396][ T5938] synaptics_usb 4-1:0.218: probe with driver synaptics_usb failed with error -22
[  154.158493][ T6644] netlink: 8 bytes leftover after parsing attributes in process `syz.4.199'.
[  156.077341][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout
[  156.092335][ T6631] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  156.161951][ T5938] usb 4-1: USB disconnect, device number 3
[  156.435846][ T6631] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  156.918711][ T6631] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  157.485174][ T6631] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  157.526080][ T6631] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  157.612200][ T6631] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  157.669969][ T6631] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  157.697060][ T6631] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  157.731734][ T6631] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  157.794616][ T6631] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  157.820349][ T6631] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  157.880812][ T6631] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  158.599071][ T5831] Bluetooth: hci1: command 0x0c1a tx timeout
[  159.555392][ T5825] Bluetooth: hci2: command 0x0c1a tx timeout
[  159.992372][ T5825] Bluetooth: hci3: command 0x0c1a tx timeout
[  159.998434][ T5825] Bluetooth: hci4: command 0x0405 tx timeout
[  160.151512][ T5938] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  160.669633][ T5825] Bluetooth: hci1: command 0x0c1a tx timeout
[  161.629716][ T5825] Bluetooth: hci2: command 0x0c1a tx timeout
[  161.786197][ T6682] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  162.553974][ T5825] Bluetooth: hci3: command 0x0c1a tx timeout
[  162.554054][ T5831] Bluetooth: hci4: command 0x0405 tx timeout
[  163.623349][ T6695] SET target dimension over the limit!
[  163.666845][ T6701] FAULT_INJECTION: forcing a failure.
[  163.666845][ T6701] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  163.692507][ T6701] CPU: 0 UID: 0 PID: 6701 Comm: syz.2.218 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  163.692530][ T6701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  163.692540][ T6701] Call Trace:
[  163.692547][ T6701]  <TASK>
[  163.692554][ T6701]  dump_stack_lvl+0x189/0x250
[  163.692584][ T6701]  ? __pfx____ratelimit+0x10/0x10
[  163.692609][ T6701]  ? __pfx_dump_stack_lvl+0x10/0x10
[  163.692634][ T6701]  ? __pfx__printk+0x10/0x10
[  163.692658][ T6701]  ? __might_fault+0xb0/0x130
[  163.692692][ T6701]  should_fail_ex+0x414/0x560
[  163.692717][ T6701]  _copy_from_user+0x2d/0xb0
[  163.692744][ T6701]  ____sys_sendmsg+0x2fe/0x830
[  163.692769][ T6701]  ? __pfx_____sys_sendmsg+0x10/0x10
[  163.692798][ T6701]  ? import_iovec+0x74/0xa0
[  163.692827][ T6701]  ___sys_sendmsg+0x21f/0x2a0
[  163.692848][ T6701]  ? __pfx____sys_sendmsg+0x10/0x10
[  163.692901][ T6701]  ? __fget_files+0x2a/0x420
[  163.692923][ T6701]  ? __fget_files+0x3a0/0x420
[  163.692955][ T6701]  __sys_sendmmsg+0x227/0x430
[  163.692980][ T6701]  ? __pfx___sys_sendmmsg+0x10/0x10
[  163.692997][ T6701]  ? __mutex_unlock_slowpath+0x1cd/0x700
[  163.693047][ T6701]  ? ksys_write+0x22a/0x250
[  163.693068][ T6701]  ? __pfx_ksys_write+0x10/0x10
[  163.693086][ T6701]  ? rcu_is_watching+0x15/0xb0
[  163.693117][ T6701]  __x64_sys_sendmmsg+0xa0/0xc0
[  163.693139][ T6701]  do_syscall_64+0xfa/0x3b0
[  163.693164][ T6701]  ? lockdep_hardirqs_on+0x9c/0x150
[  163.693187][ T6701]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.693203][ T6701]  ? clear_bhb_loop+0x60/0xb0
[  163.693224][ T6701]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  163.693241][ T6701] RIP: 0033:0x7f5e2638e929
[  163.693256][ T6701] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.693270][ T6701] RSP: 002b:00007f5e2719d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  163.693288][ T6701] RAX: ffffffffffffffda RBX: 00007f5e265b5fa0 RCX: 00007f5e2638e929
[  163.693301][ T6701] RDX: 0000000000000001 RSI: 0000200000001c80 RDI: 0000000000000003
[  163.693311][ T6701] RBP: 00007f5e2719d090 R08: 0000000000000000 R09: 0000000000000000
[  163.693321][ T6701] R10: 0000000020000850 R11: 0000000000000246 R12: 0000000000000001
[  163.693332][ T6701] R13: 0000000000000000 R14: 00007f5e265b5fa0 R15: 00007ffd48c1adb8
[  163.693358][ T6701]  </TASK>
[  163.749236][ T5831] Bluetooth: hci2: command 0x0c1a tx timeout
[  163.773165][ T6705] FAULT_INJECTION: forcing a failure.
[  163.773165][ T6705] name failslab, interval 1, probability 0, space 0, times 0
[  164.050578][   T10] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  164.191006][ T6705] CPU: 0 UID: 0 PID: 6705 Comm: syz.4.219 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  164.191035][ T6705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  164.191046][ T6705] Call Trace:
[  164.191054][ T6705]  <TASK>
[  164.191063][ T6705]  dump_stack_lvl+0x189/0x250
[  164.191096][ T6705]  ? __pfx____ratelimit+0x10/0x10
[  164.191124][ T6705]  ? __pfx_dump_stack_lvl+0x10/0x10
[  164.191152][ T6705]  ? __pfx__printk+0x10/0x10
[  164.191179][ T6705]  ? ref_tracker_alloc+0x318/0x460
[  164.191208][ T6705]  should_fail_ex+0x414/0x560
[  164.191236][ T6705]  should_failslab+0xa8/0x100
[  164.191275][ T6705]  kmem_cache_alloc_noprof+0x73/0x3c0
[  164.191297][ T6705]  ? skb_clone+0x212/0x3a0
[  164.191324][ T6705]  skb_clone+0x212/0x3a0
[  164.191350][ T6705]  __netlink_deliver_tap+0x404/0x850
[  164.191382][ T6705]  ? netlink_deliver_tap+0x2e/0x1b0
[  164.191404][ T6705]  netlink_deliver_tap+0x19c/0x1b0
[  164.191424][ T6705]  netlink_unicast+0x72f/0x8d0
[  164.191463][ T6705]  netlink_sendmsg+0x805/0xb30
[  164.191493][ T6705]  ? __pfx_netlink_sendmsg+0x10/0x10
[  164.191521][ T6705]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  164.191542][ T6705]  ? __pfx_netlink_sendmsg+0x10/0x10
[  164.191563][ T6705]  __sock_sendmsg+0x219/0x270
[  164.191597][ T6705]  ____sys_sendmsg+0x505/0x830
[  164.191629][ T6705]  ? __pfx_____sys_sendmsg+0x10/0x10
[  164.191660][ T6705]  ? import_iovec+0x74/0xa0
[  164.191692][ T6705]  ___sys_sendmsg+0x21f/0x2a0
[  164.191716][ T6705]  ? __pfx____sys_sendmsg+0x10/0x10
[  164.191776][ T6705]  ? __fget_files+0x2a/0x420
[  164.191799][ T6705]  ? __fget_files+0x3a0/0x420
[  164.191833][ T6705]  __x64_sys_sendmsg+0x19b/0x260
[  164.191858][ T6705]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  164.191890][ T6705]  ? __pfx_ksys_write+0x10/0x10
[  164.191909][ T6705]  ? rcu_is_watching+0x15/0xb0
[  164.191940][ T6705]  ? do_syscall_64+0xbe/0x3b0
[  164.191971][ T6705]  do_syscall_64+0xfa/0x3b0
[  164.191996][ T6705]  ? lockdep_hardirqs_on+0x9c/0x150
[  164.192020][ T6705]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.192038][ T6705]  ? clear_bhb_loop+0x60/0xb0
[  164.192060][ T6705]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  164.192078][ T6705] RIP: 0033:0x7f25b1b8e929
[  164.192094][ T6705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  164.192109][ T6705] RSP: 002b:00007f25b295c038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  164.192128][ T6705] RAX: ffffffffffffffda RBX: 00007f25b1db5fa0 RCX: 00007f25b1b8e929
[  164.192142][ T6705] RDX: 0000000000000000 RSI: 00002000000003c0 RDI: 0000000000000004
[  164.192152][ T6705] RBP: 00007f25b295c090 R08: 0000000000000000 R09: 0000000000000000
[  164.192163][ T6705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  164.192174][ T6705] R13: 0000000000000000 R14: 00007f25b1db5fa0 R15: 00007ffff4ca6d88
[  164.192203][ T6705]  </TASK>
[  164.589144][ T5831] Bluetooth: hci3: command 0x0c1a tx timeout
[  164.589153][ T5825] Bluetooth: hci4: command 0x0405 tx timeout
[  164.690867][   T10] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  164.727254][   T10] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  164.753341][   T10] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  164.763477][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.784348][ T6697] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  164.801300][   T10] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  165.022389][ T6718] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  165.129199][ T6719] netlink: 32 bytes leftover after parsing attributes in process `syz.2.221'.
[  165.191515][ T5900] IPVS: starting estimator thread 0...
[  165.271057][ T6721] ubi31: attaching mtd0
[  165.309461][ T6720] IPVS: using max 29 ests per chain, 69600 per kthread
[  165.313686][ T6721] ubi31: scanning is finished
[  165.313723][ T6721] ubi31: empty MTD device detected
[  166.404720][   T10] usb 1-1: USB disconnect, device number 5
[  166.616122][ T6721] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[  166.729011][ T6721] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  166.819111][ T6721] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[  166.865676][ T6721] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[  166.987243][ T6721] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  167.092073][ T6721] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[  167.159465][ T5884] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  167.215840][ T6721] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 915699681
[  167.369996][ T6721] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  168.623628][ T6730] ubi31: background thread "ubi_bgt31d" started, PID 6730
[  168.680582][ T5825] Bluetooth: hci4: command 0x0405 tx timeout
[  169.121641][ T6750] syz.4.230: attempt to access beyond end of device
[  169.121641][ T6750] nbd4: rw=6144, sector=128, nr_sectors = 8 limit=0
[  169.688369][ T6750] gfs2: error -5 reading superblock
[  169.973908][ T6761] netlink: 'syz.1.233': attribute type 23 has an invalid length.
[  170.103439][ T6762] 9pnet_fd: Insufficient options for proto=fd
[  170.912478][ T6775] IPVS: set_ctl: invalid protocol: 48 0.0.0.0:0
[  172.174864][ T6786] syzkaller0: entered promiscuous mode
[  172.374400][ T6786] syzkaller0: entered allmulticast mode
[  173.219737][ T6803] syz.1.245: attempt to access beyond end of device
[  173.219737][ T6803] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[  173.254766][ T6803] gfs2: error -5 reading superblock
[  174.648978][  T979] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  174.829663][  T979] usb 4-1: Using ep0 maxpacket: 8
[  174.852962][  T979] usb 4-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[  174.877734][  T979] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.887994][  T979] usb 4-1: Product: syz
[  174.919497][  T979] usb 4-1: Manufacturer: syz
[  174.924419][  T979] usb 4-1: SerialNumber: syz
[  174.953270][  T979] usb 4-1: config 0 descriptor??
[  175.009227][  T979] gspca_main: sq930x-2.14.0 probing 2770:930c
[  175.133708][ T6817] overlayfs: overlapping lowerdir path
[  176.450050][  T979] gspca_sq930x: ucbus_write failed -110
[  176.670176][  T979] gspca_sq930x: Sensor ov9630 not yet treated
[  176.676570][  T979] sq930x 4-1:0.0: probe with driver sq930x failed with error -22
[  177.363539][ T6829] vlan2: entered allmulticast mode
[  177.368860][ T6829] vlan1: entered allmulticast mode
[  177.374095][ T6829] veth0_vlan: entered allmulticast mode
[  177.843632][  T979] usb 4-1: USB disconnect, device number 5
[  178.988732][ T6841] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.996605][ T6841] bridge0: port 1(bridge_slave_0) entered disabled state
[  179.194563][ T6852] overlayfs: overlapping lowerdir path
[  181.951039][ T6841] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  181.965942][ T6841] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  182.116644][ T6841] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.126299][ T6841] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.137760][ T6841] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.147228][ T6841] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  183.776328][ T6906] overlayfs: overlapping lowerdir path
[  186.926679][ T6935] netlink: 'syz.1.281': attribute type 1 has an invalid length.
[  186.943395][ T6935] netlink: 'syz.1.281': attribute type 1 has an invalid length.
[  186.963767][ T6935] netlink: 'syz.1.281': attribute type 1 has an invalid length.
[  187.632320][ T6935] netlink: 'syz.1.281': attribute type 1 has an invalid length.
[  187.884939][ T6945] netlink: 4 bytes leftover after parsing attributes in process `syz.2.285'.
[  188.495835][ T6953] fuse: Unknown parameter '00000000000000000000003'
[  191.689313][ T6987] netlink: 4 bytes leftover after parsing attributes in process `syz.3.299'.
[  191.732362][ T6988] netlink: 'syz.3.299': attribute type 10 has an invalid length.
[  191.800555][ T6988] 8021q: adding VLAN 0 to HW filter on device bond0
[  191.873318][ T6988] team0: Port device bond0 added
[  192.068991][   T10] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  192.249057][   T10] usb 4-1: Using ep0 maxpacket: 32
[  192.266657][   T10] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2
[  192.284659][   T10] usb 4-1: too many endpoints for config 0 interface 0 altsetting 5: 69, using maximum allowed: 30
[  192.295883][   T10] usb 4-1: config 0 interface 0 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 69
[  192.690210][   T10] usb 4-1: config 0 interface 0 has no altsetting 1
[  192.733450][   T10] usb 4-1: New USB device found, idVendor=152d, idProduct=0539, bcdDevice= 0.00
[  192.878348][   T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  192.888780][   T10] usb 4-1: SerialNumber: syz
[  192.898379][   T10] usb 4-1: config 0 descriptor??
[  192.914797][   T10] usb-storage 4-1:0.0: USB Mass Storage device detected
[  192.934925][   T10] usb-storage 4-1:0.0: Quirks match for vid 152d pid 0539: 4000000
[  193.131871][ T5884] usb 4-1: USB disconnect, device number 6
[  193.651789][ T7019] FAULT_INJECTION: forcing a failure.
[  193.651789][ T7019] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  193.688363][ T7019] CPU: 1 UID: 0 PID: 7019 Comm: syz.0.306 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  193.688389][ T7019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  193.688417][ T7019] Call Trace:
[  193.688425][ T7019]  <TASK>
[  193.688434][ T7019]  dump_stack_lvl+0x189/0x250
[  193.688487][ T7019]  ? __pfx____ratelimit+0x10/0x10
[  193.688514][ T7019]  ? __pfx_dump_stack_lvl+0x10/0x10
[  193.688544][ T7019]  ? __pfx__printk+0x10/0x10
[  193.688576][ T7019]  should_fail_ex+0x414/0x560
[  193.688605][ T7019]  _copy_to_user+0x31/0xb0
[  193.688636][ T7019]  simple_read_from_buffer+0xe1/0x170
[  193.688667][ T7019]  proc_fail_nth_read+0x1df/0x250
[  193.688704][ T7019]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  193.688734][ T7019]  ? rw_verify_area+0x258/0x650
[  193.688755][ T7019]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  193.688784][ T7019]  vfs_read+0x1fd/0x980
[  193.688812][ T7019]  ? __pfx___mutex_lock+0x10/0x10
[  193.688841][ T7019]  ? __pfx_vfs_read+0x10/0x10
[  193.688865][ T7019]  ? __fget_files+0x2a/0x420
[  193.688899][ T7019]  ? __fget_files+0x3a0/0x420
[  193.688923][ T7019]  ? __fget_files+0x2a/0x420
[  193.688958][ T7019]  ksys_read+0x145/0x250
[  193.688983][ T7019]  ? __pfx_ksys_read+0x10/0x10
[  193.689002][ T7019]  ? rcu_is_watching+0x15/0xb0
[  193.689035][ T7019]  ? do_syscall_64+0xbe/0x3b0
[  193.689067][ T7019]  do_syscall_64+0xfa/0x3b0
[  193.689096][ T7019]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.689114][ T7019]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  193.689132][ T7019]  ? clear_bhb_loop+0x60/0xb0
[  193.689156][ T7019]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  193.689175][ T7019] RIP: 0033:0x7fc5b718d33c
[  193.689199][ T7019] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  193.689216][ T7019] RSP: 002b:00007fc5b8069030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  193.689240][ T7019] RAX: ffffffffffffffda RBX: 00007fc5b73b5fa0 RCX: 00007fc5b718d33c
[  193.689254][ T7019] RDX: 000000000000000f RSI: 00007fc5b80690a0 RDI: 0000000000000004
[  193.689265][ T7019] RBP: 00007fc5b8069090 R08: 0000000000000000 R09: 0000000000000000
[  193.689277][ T7019] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000001
[  193.689288][ T7019] R13: 0000000000000000 R14: 00007fc5b73b5fa0 R15: 00007ffce69d2c48
[  193.689319][ T7019]  </TASK>
[  194.169427][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  195.057667][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  195.912357][ T7038] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  196.027129][ T7038] netlink: 24 bytes leftover after parsing attributes in process `syz.2.310'.
[  196.331671][ T7040] netlink: 8 bytes leftover after parsing attributes in process `syz.1.312'.
[  196.371847][ T7040] netlink: 32 bytes leftover after parsing attributes in process `syz.1.312'.
[  196.426946][ T7045] netlink: 4 bytes leftover after parsing attributes in process `syz.0.311'.
[  196.644199][ T7045] netlink: 'syz.0.311': attribute type 15 has an invalid length.
[  197.132858][ T7045] netlink: 'syz.0.311': attribute type 18 has an invalid length.
[  197.176238][ T7045] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  197.185945][ T7045] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  197.195176][ T7045] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  197.203926][ T7045] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  197.214128][ T7045] vxlan0: entered promiscuous mode
[  197.364488][ T5938] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  197.978755][ T5938] usb 4-1: New USB device found, idVendor=13d8, idProduct=0011, bcdDevice=d0.62
[  197.994486][ T5938] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.048999][ T5938] usb 4-1: Product: syz
[  198.053446][ T5938] usb 4-1: Manufacturer: syz
[  198.058246][ T5938] usb 4-1: SerialNumber: syz
[  198.078461][ T5938] usb 4-1: config 0 descriptor??
[  198.205567][ T5938] usb 4-1: selecting invalid altsetting 1
[  198.220127][ T5938] comedi comedi0: could not switch to alternate setting 1
[  198.227355][ T5938] usbduxfast 4-1:0.0: driver 'usbduxfast' failed to auto-configure device.
[  201.461711][ T7071] netlink: 60 bytes leftover after parsing attributes in process `syz.1.320'.
[  201.472634][ T7069] netlink: 60 bytes leftover after parsing attributes in process `syz.1.320'.
[  202.149714][   T10] usb 4-1: USB disconnect, device number 7
[  203.121577][ T7087] bridge0: entered promiscuous mode
[  203.143069][ T7087] macvlan2: entered promiscuous mode
[  204.309236][  T979] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  204.339403][ T5900] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  204.572046][  T979] usb 5-1: Using ep0 maxpacket: 32
[  204.630289][  T979] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  204.652601][  T979] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  204.668082][  T979] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  204.689776][  T979] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  205.126278][  T979] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.154498][ T5900] usb 1-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  205.175392][ T5900] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.183922][ T5900] usb 1-1: Product: syz
[  205.188335][ T5900] usb 1-1: Manufacturer: syz
[  205.190550][  T979] usb 5-1: config 0 descriptor??
[  205.197566][ T5900] usb 1-1: SerialNumber: syz
[  205.207117][ T7105] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  205.207953][ T5900] usb 1-1: config 0 descriptor??
[  205.279741][  T979] hub 5-1:0.0: USB hub found
[  205.509628][  T979] hub 5-1:0.0: 2 ports detected
[  205.674557][ T5900] usb 1-1: Firmware: major: 13, minor: 242, hardware type: UNKNOWN (129)
[  205.960607][ T5900] usb 1-1: Read permanent extended address ac:83:de:59:10:b2:10:83 from device
[  206.113147][ T5900] usb 1-1: atusb_probe: initialization failed, error = -524
[  206.209675][ T5900] atusb 1-1:0.0: probe with driver atusb failed with error -524
[  207.086327][   T30] audit: type=1326 audit(1751269400.638:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.263533][   T30] audit: type=1326 audit(1751269400.638:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.285368][   T30] audit: type=1326 audit(1751269400.638:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.330455][   T30] audit: type=1326 audit(1751269400.658:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.352085][  T979] hub 5-1:0.0: set hub depth failed
[  207.359090][   T30] audit: type=1326 audit(1751269400.798:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.400663][   T10] usb 1-1: USB disconnect, device number 6
[  207.422903][   T30] audit: type=1326 audit(1751269400.798:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.449072][   T30] audit: type=1326 audit(1751269400.798:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.453556][  T979] usb 5-1: USB disconnect, device number 5
[  207.475484][   T30] audit: type=1326 audit(1751269400.798:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.497612][   T30] audit: type=1326 audit(1751269400.798:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.538308][   T30] audit: type=1326 audit(1751269400.798:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7135 comm="syz.2.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e2638e929 code=0x7ffc0000
[  207.629284][ T5884] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  207.748157][ T7144] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.820319][ T5884] usb 4-1: config 0 has an invalid interface number: 96 but max is 0
[  207.828572][ T5884] usb 4-1: config 0 has no interface number 0
[  207.838758][ T5884] usb 4-1: config 0 interface 96 has no altsetting 0
[  207.856555][ T5884] usb 4-1: New USB device found, idVendor=2639, idProduct=0003, bcdDevice=10.b8
[  207.868793][ T5884] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.878653][ T5884] usb 4-1: Product: syz
[  207.885170][ T5884] usb 4-1: Manufacturer: syz
[  207.905510][ T5884] usb 4-1: SerialNumber: syz
[  207.950121][ T5884] usb 4-1: config 0 descriptor??
[  208.033131][   T10] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  208.161670][ T5938] usb 4-1: USB disconnect, device number 8
[  208.179037][   T10] usb 1-1: device descriptor read/64, error -71
[  208.589219][   T10] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  208.605254][ T7160] netlink: 60 bytes leftover after parsing attributes in process `syz.2.347'.
[  208.670031][ T7160] hub 8-0:1.0: USB hub found
[  208.676557][ T7160] hub 8-0:1.0: 1 port detected
[  209.019256][   T10] usb 1-1: device descriptor read/64, error -71
[  209.080519][ T5884] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  209.169172][   T10] usb usb1-port1: attempt power cycle
[  209.249087][ T5884] usb 5-1: Using ep0 maxpacket: 32
[  209.263687][ T5884] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  209.782790][ T5884] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  209.829152][ T5884] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  209.868982][ T5884] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  209.878052][ T5884] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.879835][ T7166] fuse: Unknown parameter 'user_i00000000000000000000'
[  209.935872][ T5884] usb 5-1: config 0 descriptor??
[  209.962080][ T7158] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  209.979190][   T10] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  210.010308][ T7168] No control pipe specified
[  210.016641][ T5884] hub 5-1:0.0: USB hub found
[  210.031046][   T10] usb 1-1: device descriptor read/8, error -71
[  210.246296][ T5884] hub 5-1:0.0: 2 ports detected
[  210.309149][   T10] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  210.364506][   T10] usb 1-1: device descriptor read/8, error -71
[  210.397446][ T7175] FAULT_INJECTION: forcing a failure.
[  210.397446][ T7175] name failslab, interval 1, probability 0, space 0, times 0
[  210.414493][ T7175] CPU: 0 UID: 0 PID: 7175 Comm: syz.1.353 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  210.414514][ T7175] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  210.414525][ T7175] Call Trace:
[  210.414533][ T7175]  <TASK>
[  210.414540][ T7175]  dump_stack_lvl+0x189/0x250
[  210.414571][ T7175]  ? __pfx____ratelimit+0x10/0x10
[  210.414595][ T7175]  ? __pfx_dump_stack_lvl+0x10/0x10
[  210.414620][ T7175]  ? __pfx__printk+0x10/0x10
[  210.414643][ T7175]  ? __pfx___might_resched+0x10/0x10
[  210.414668][ T7175]  ? fs_reclaim_acquire+0x7d/0x100
[  210.414697][ T7175]  should_fail_ex+0x414/0x560
[  210.414721][ T7175]  should_failslab+0xa8/0x100
[  210.414745][ T7175]  __kmalloc_noprof+0xcb/0x4f0
[  210.414763][ T7175]  ? kfree+0x4d/0x440
[  210.414779][ T7175]  ? tomoyo_realpath_from_path+0xe3/0x5d0
[  210.414808][ T7175]  tomoyo_realpath_from_path+0xe3/0x5d0
[  210.414836][ T7175]  ? tomoyo_domain+0xda/0x130
[  210.414866][ T7175]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  210.414886][ T7175]  tomoyo_path_number_perm+0x1e8/0x5a0
[  210.414909][ T7175]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  210.414946][ T7175]  ? __lock_acquire+0xab9/0xd20
[  210.414989][ T7175]  ? __fget_files+0x2a/0x420
[  210.415015][ T7175]  ? __fget_files+0x2a/0x420
[  210.415036][ T7175]  ? __fget_files+0x3a0/0x420
[  210.415057][ T7175]  ? __fget_files+0x2a/0x420
[  210.415083][ T7175]  security_file_ioctl+0xcb/0x2d0
[  210.415108][ T7175]  __se_sys_ioctl+0x47/0x170
[  210.415129][ T7175]  do_syscall_64+0xfa/0x3b0
[  210.415152][ T7175]  ? lockdep_hardirqs_on+0x9c/0x150
[  210.415176][ T7175]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.415193][ T7175]  ? clear_bhb_loop+0x60/0xb0
[  210.415214][ T7175]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.415231][ T7175] RIP: 0033:0x7f22a2b8e929
[  210.415247][ T7175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.415261][ T7175] RSP: 002b:00007f22a395b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  210.415279][ T7175] RAX: ffffffffffffffda RBX: 00007f22a2db5fa0 RCX: 00007f22a2b8e929
[  210.415292][ T7175] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[  210.415302][ T7175] RBP: 00007f22a395b090 R08: 0000000000000000 R09: 0000000000000000
[  210.415312][ T7175] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  210.415322][ T7175] R13: 0000000000000000 R14: 00007f22a2db5fa0 R15: 00007ffedf11c308
[  210.415350][ T7175]  </TASK>
[  210.415357][ T7175] ERROR: Out of memory at tomoyo_realpath_from_path.
[  210.671693][ T5900] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  210.689241][   T10] usb usb1-port1: unable to enumerate USB device
[  210.811854][ T7158] netlink: 'syz.4.346': attribute type 23 has an invalid length.
[  210.843503][   T49] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  210.864799][ T5900] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  210.884718][ T5900] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  210.928962][ T5900] usb 4-1: Product: syz
[  210.933158][ T5900] usb 4-1: Manufacturer: syz
[  210.937816][ T5900] usb 4-1: SerialNumber: syz
[  210.999846][ T5900] usb 4-1: config 0 descriptor??
[  211.019083][   T49] usb 3-1: Using ep0 maxpacket: 32
[  211.041775][   T49] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  211.065575][   T49] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  211.199629][   T49] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  211.533067][   T49] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  211.678988][   T49] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  211.743761][   T49] usb 3-1: config 0 descriptor??
[  211.785662][ T7180] raw-gadget.3 gadget.2: fail, usb_ep_enable returned -22
[  211.871281][ T5900] usb 4-1: Firmware: major: 13, minor: 242, hardware type: UNKNOWN (129)
[  212.008737][   T49] hub 3-1:0.0: USB hub found
[  212.044724][   T49] hub 3-1:0.0: 2 ports detected
[  212.087301][ T5900] usb 4-1: Read permanent extended address ac:83:de:59:10:b2:10:83 from device
[  212.109419][ T5884] hub 5-1:0.0: set hub depth failed
[  212.138585][ T5900] usb 4-1: atusb_probe: initialization failed, error = -524
[  212.167079][ T5900] atusb 4-1:0.0: probe with driver atusb failed with error -524
[  212.168047][ T5884] usb 5-1: USB disconnect, device number 6
[  212.813471][ T7195] netlink: 'syz.4.360': attribute type 4 has an invalid length.
[  212.855446][ T7195] netlink: 12 bytes leftover after parsing attributes in process `syz.4.360'.
[  212.924552][ T5900] usb 4-1: USB disconnect, device number 9
[  213.645964][ T7211] No control pipe specified
[  214.084227][ T7216] FAULT_INJECTION: forcing a failure.
[  214.084227][ T7216] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  214.097406][ T7216] CPU: 0 UID: 0 PID: 7216 Comm: syz.3.364 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  214.097430][ T7216] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  214.097442][ T7216] Call Trace:
[  214.097451][ T7216]  <TASK>
[  214.097459][ T7216]  dump_stack_lvl+0x189/0x250
[  214.097494][ T7216]  ? __pfx____ratelimit+0x10/0x10
[  214.097523][ T7216]  ? __pfx_dump_stack_lvl+0x10/0x10
[  214.097553][ T7216]  ? __pfx__printk+0x10/0x10
[  214.097585][ T7216]  should_fail_ex+0x414/0x560
[  214.097608][ T7216]  _copy_to_user+0x31/0xb0
[  214.097635][ T7216]  simple_read_from_buffer+0xe1/0x170
[  214.097661][ T7216]  proc_fail_nth_read+0x1df/0x250
[  214.097687][ T7216]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  214.097713][ T7216]  ? rw_verify_area+0x258/0x650
[  214.097730][ T7216]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  214.097754][ T7216]  vfs_read+0x1fd/0x980
[  214.097776][ T7216]  ? __pfx___mutex_lock+0x10/0x10
[  214.097800][ T7216]  ? __pfx_vfs_read+0x10/0x10
[  214.097819][ T7216]  ? __fget_files+0x2a/0x420
[  214.097846][ T7216]  ? __fget_files+0x3a0/0x420
[  214.097866][ T7216]  ? __fget_files+0x2a/0x420
[  214.097896][ T7216]  ksys_read+0x145/0x250
[  214.097928][ T7216]  ? __pfx_ksys_read+0x10/0x10
[  214.097951][ T7216]  ? do_syscall_64+0xbe/0x3b0
[  214.097988][ T7216]  do_syscall_64+0xfa/0x3b0
[  214.098006][ T7216]  ? lockdep_hardirqs_on+0x9c/0x150
[  214.098025][ T7216]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.098039][ T7216]  ? clear_bhb_loop+0x60/0xb0
[  214.098056][ T7216]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  214.098069][ T7216] RIP: 0033:0x7f3c16b8d33c
[  214.098082][ T7216] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  214.098102][ T7216] RSP: 002b:00007f3c179af030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  214.098118][ T7216] RAX: ffffffffffffffda RBX: 00007f3c16db6080 RCX: 00007f3c16b8d33c
[  214.098128][ T7216] RDX: 000000000000000f RSI: 00007f3c179af0a0 RDI: 0000000000000006
[  214.098137][ T7216] RBP: 00007f3c179af090 R08: 0000000000000000 R09: 0000000000000000
[  214.098146][ T7216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  214.098154][ T7216] R13: 0000000000000000 R14: 00007f3c16db6080 R15: 00007ffe8343ce48
[  214.098179][ T7216]  </TASK>
[  214.322884][    C0] vkms_vblank_simulate: vblank timer overrun
[  215.113424][   T49] hub 3-1:0.0: set hub depth failed
[  215.263374][   T49] usb 3-1: USB disconnect, device number 7
[  215.284994][ T7220] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  215.387965][ T7220] netlink: 20 bytes leftover after parsing attributes in process `syz.0.366'.
[  215.719055][ T5884] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  216.709026][ T5884] usb 5-1: Using ep0 maxpacket: 32
[  216.730402][ T5884] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  216.744240][ T5884] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  216.760350][ T5884] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  216.773539][ T5884] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  216.815821][ T5884] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.282248][ T5884] usb 5-1: config 0 descriptor??
[  217.288191][ T7231] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  217.320250][ T5884] hub 5-1:0.0: USB hub found
[  217.335725][ T7246] No control pipe specified
[  218.071007][ T5884] hub 5-1:0.0: 2 ports detected
[  219.442947][ T7231] netlink: 'syz.4.370': attribute type 23 has an invalid length.
[  221.298951][ T5884] hub 5-1:0.0: set hub depth failed
[  221.323462][ T5884] usb 5-1: USB disconnect, device number 7
[  221.540353][ T7288] autofs: Bad value for 'fd'
[  221.709686][ T5831] Bluetooth: hci1: unexpected event for opcode 0x1804
[  221.878505][ T7295] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  221.922674][ T7295] netlink: 20 bytes leftover after parsing attributes in process `syz.3.388'.
[  222.139044][   T10] IPVS: starting estimator thread 0...
[  222.499208][ T7297] IPVS: using max 28 ests per chain, 67200 per kthread
[  225.137960][ T7322] overlayfs: failed to resolve './file1': -2
[  225.614170][ T7328] autofs: Bad value for 'fd'
[  225.682307][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  225.682323][   T30] audit: type=1326 audit(1751269419.228:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7314 comm="syz.0.397" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc5b718e929 code=0x0
[  225.761983][   T10] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  225.790341][ T5831] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  225.798846][ T5831] Bluetooth: hci1: Injecting HCI hardware error event
[  225.806641][ T5825] Bluetooth: hci1: hardware error 0x00
[  226.201203][   T10] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  226.213763][   T10] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  226.224974][   T10] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  226.241980][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[  226.252454][   T10] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  226.263365][   T10] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  226.284466][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[  226.294338][   T10] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  226.305607][   T10] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  226.322000][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[  226.330419][   T10] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  226.345010][   T10] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  226.381525][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[  226.390145][   T10] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  226.402989][   T10] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  226.941780][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[  227.099473][   T10] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.154272][   T10] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.210256][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[  227.302858][ T7347] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  227.334509][   T10] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.361506][ T7347] netlink: 20 bytes leftover after parsing attributes in process `syz.2.405'.
[  227.723440][   T10] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  227.749621][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[  227.776404][   T10] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  227.912753][ T5825] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  228.559019][   T10] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  228.643693][   T10] usb 5-1: config 0 interface 0 has no altsetting 0
[  228.669372][   T10] usb 5-1: string descriptor 0 read error: -71
[  228.683244][   T10] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  228.701498][   T10] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  228.715703][   T10] usb 5-1: config 0 descriptor??
[  228.742516][   T10] usb 5-1: can't set config #0, error -71
[  228.763375][   T10] usb 5-1: USB disconnect, device number 8
[  229.031599][   T30] audit: type=1800 audit(1751269422.568:22): pid=7362 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.410" name="bus" dev="overlay" ino=427 res=0 errno=0
[  229.171095][ T7365] autofs: Bad value for 'fd'
[  231.996784][ T7381] [U] é
[  232.904057][ T7391] syzkaller0: entered promiscuous mode
[  233.013971][ T7391] syzkaller0: entered allmulticast mode
[  233.156586][ T7404] autofs: Unknown parameter '0x0000000000000000'
[  233.360295][ T7407] FAULT_INJECTION: forcing a failure.
[  233.360295][ T7407] name failslab, interval 1, probability 0, space 0, times 0
[  233.373090][ T7407] CPU: 1 UID: 0 PID: 7407 Comm: syz.2.422 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  233.373112][ T7407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  233.373122][ T7407] Call Trace:
[  233.373130][ T7407]  <TASK>
[  233.373138][ T7407]  dump_stack_lvl+0x189/0x250
[  233.373186][ T7407]  ? __pfx____ratelimit+0x10/0x10
[  233.373212][ T7407]  ? __pfx_dump_stack_lvl+0x10/0x10
[  233.373239][ T7407]  ? __pfx__printk+0x10/0x10
[  233.373265][ T7407]  ? ref_tracker_alloc+0x318/0x460
[  233.373300][ T7407]  should_fail_ex+0x414/0x560
[  233.373342][ T7407]  should_failslab+0xa8/0x100
[  233.373369][ T7407]  kmem_cache_alloc_noprof+0x73/0x3c0
[  233.373390][ T7407]  ? skb_clone+0x212/0x3a0
[  233.373418][ T7407]  skb_clone+0x212/0x3a0
[  233.373444][ T7407]  __netlink_deliver_tap+0x404/0x850
[  233.373476][ T7407]  ? netlink_deliver_tap+0x2e/0x1b0
[  233.373498][ T7407]  netlink_deliver_tap+0x19c/0x1b0
[  233.373530][ T7407]  netlink_unicast+0x72f/0x8d0
[  233.373584][ T7407]  netlink_sendmsg+0x805/0xb30
[  233.373602][ T7407]  ? finish_task_switch+0x18b/0x950
[  233.373633][ T7407]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.373661][ T7407]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  233.373694][ T7407]  ? __pfx_netlink_sendmsg+0x10/0x10
[  233.373713][ T7407]  __sock_sendmsg+0x219/0x270
[  233.373741][ T7407]  ____sys_sendmsg+0x505/0x830
[  233.373766][ T7407]  ? __pfx_____sys_sendmsg+0x10/0x10
[  233.373795][ T7407]  ? import_iovec+0x74/0xa0
[  233.373825][ T7407]  ___sys_sendmsg+0x21f/0x2a0
[  233.373847][ T7407]  ? __pfx____sys_sendmsg+0x10/0x10
[  233.373865][ T7407]  ? preempt_schedule_common+0x83/0xd0
[  233.373937][ T7407]  __x64_sys_sendmsg+0x19b/0x260
[  233.373960][ T7407]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  233.373989][ T7407]  ? __pfx_ksys_write+0x10/0x10
[  233.374014][ T7407]  ? do_syscall_64+0xbe/0x3b0
[  233.374043][ T7407]  do_syscall_64+0xfa/0x3b0
[  233.374069][ T7407]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.374092][ T7407]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  233.374109][ T7407]  ? clear_bhb_loop+0x60/0xb0
[  233.374130][ T7407]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  233.374147][ T7407] RIP: 0033:0x7f5e2638e929
[  233.374162][ T7407] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  233.374176][ T7407] RSP: 002b:00007f5e2715b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  233.374194][ T7407] RAX: ffffffffffffffda RBX: 00007f5e265b6160 RCX: 00007f5e2638e929
[  233.374207][ T7407] RDX: 0000000000000000 RSI: 00002000000002c0 RDI: 0000000000000005
[  233.374218][ T7407] RBP: 00007f5e2715b090 R08: 0000000000000000 R09: 0000000000000000
[  233.374228][ T7407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  233.374238][ T7407] R13: 0000000000000000 R14: 00007f5e265b6160 R15: 00007ffd48c1adb8
[  233.374266][ T7407]  </TASK>
[  233.374507][ T7407] netlink: 8 bytes leftover after parsing attributes in process `syz.2.422'.
[  233.757641][ T7403] netlink: 8 bytes leftover after parsing attributes in process `syz.3.423'.
[  233.774272][ T7403] netlink: 8 bytes leftover after parsing attributes in process `syz.3.423'.
[  236.186957][ T7407] IPVS: Error joining to the multicast group
[  237.448376][ T7436] 9pnet_fd: Insufficient options for proto=fd
[  238.351355][ T7449] autofs: Unknown parameter '0x0000000000000000'
[  238.507292][ T7453] fuse: Bad value for 'fd'
[  239.130149][ T7460] hugetlbfs: Bad value for 'nr_inodes'
[  239.589574][   T49] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  240.315957][   T49] usb 1-1: New USB device found, idVendor=13d8, idProduct=0011, bcdDevice=d0.62
[  240.387465][   T49] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  240.408988][   T49] usb 1-1: Product: syz
[  240.413276][   T49] usb 1-1: Manufacturer: syz
[  240.436679][   T49] usb 1-1: SerialNumber: syz
[  240.564003][   T49] usb 1-1: config 0 descriptor??
[  240.598381][ T7453] netlink: 'syz.1.437': attribute type 3 has an invalid length.
[  240.600826][   T49] usb 1-1: selecting invalid altsetting 1
[  240.616963][   T49] comedi comedi0: could not switch to alternate setting 1
[  240.625105][   T49] usbduxfast 1-1:0.0: driver 'usbduxfast' failed to auto-configure device.
[  240.636000][ T7453] netlink: 8 bytes leftover after parsing attributes in process `syz.1.437'.
[  243.363030][   T49] usb 1-1: USB disconnect, device number 11
[  243.745553][ T7488] autofs: Unknown parameter '0x0000000000000000'
[  243.762241][ T7489] netlink: 28 bytes leftover after parsing attributes in process `syz.0.446'.
[  243.890356][ T7494] FAULT_INJECTION: forcing a failure.
[  243.890356][ T7494] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  243.918411][ T7494] CPU: 0 UID: 0 PID: 7494 Comm: syz.2.449 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  243.918435][ T7494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  243.918453][ T7494] Call Trace:
[  243.918460][ T7494]  <TASK>
[  243.918469][ T7494]  dump_stack_lvl+0x189/0x250
[  243.918501][ T7494]  ? __pfx____ratelimit+0x10/0x10
[  243.918527][ T7494]  ? __pfx_dump_stack_lvl+0x10/0x10
[  243.918554][ T7494]  ? __pfx__printk+0x10/0x10
[  243.918573][ T7494]  ? __might_fault+0xb0/0x130
[  243.918606][ T7494]  should_fail_ex+0x414/0x560
[  243.918632][ T7494]  _copy_from_user+0x2d/0xb0
[  243.918661][ T7494]  ___sys_sendmsg+0x158/0x2a0
[  243.918686][ T7494]  ? __pfx____sys_sendmsg+0x10/0x10
[  243.918742][ T7494]  ? __fget_files+0x2a/0x420
[  243.918764][ T7494]  ? __fget_files+0x3a0/0x420
[  243.918796][ T7494]  __x64_sys_sendmsg+0x19b/0x260
[  243.918818][ T7494]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  243.918847][ T7494]  ? __pfx_ksys_write+0x10/0x10
[  243.918871][ T7494]  ? rcu_is_watching+0x15/0xb0
[  243.918902][ T7494]  ? do_syscall_64+0xbe/0x3b0
[  243.918932][ T7494]  do_syscall_64+0xfa/0x3b0
[  243.918957][ T7494]  ? lockdep_hardirqs_on+0x9c/0x150
[  243.918980][ T7494]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.918998][ T7494]  ? clear_bhb_loop+0x60/0xb0
[  243.919020][ T7494]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  243.919037][ T7494] RIP: 0033:0x7f5e2638e929
[  243.919053][ T7494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  243.919066][ T7494] RSP: 002b:00007f5e2719d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  243.919085][ T7494] RAX: ffffffffffffffda RBX: 00007f5e265b5fa0 RCX: 00007f5e2638e929
[  243.919098][ T7494] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000005
[  243.919117][ T7494] RBP: 00007f5e2719d090 R08: 0000000000000000 R09: 0000000000000000
[  243.919128][ T7494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  243.919139][ T7494] R13: 0000000000000000 R14: 00007f5e265b5fa0 R15: 00007ffd48c1adb8
[  243.919178][ T7494]  </TASK>
[  244.124456][    C0] vkms_vblank_simulate: vblank timer overrun
[  244.725525][ T7504] .: renamed from bond0
[  246.668047][    C1] IPv4: Oversized IP packet from 172.20.20.24
[  246.842053][ T7527] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  247.072332][ T7524] netlink: 12 bytes leftover after parsing attributes in process `syz.2.455'.
[  247.081309][ T7524] netlink: 12 bytes leftover after parsing attributes in process `syz.2.455'.
[  247.141301][ T7532] x_tables: unsorted entry at hook 2
[  247.243976][ T7537] rtc_cmos 00:00: Alarms can be up to one day in the future
[  247.267064][ T7538] autofs: Unknown parameter '0x0000000000000000'
[  247.539095][ T5819] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  247.630329][ T7534] overlay: Unknown parameter 'subj_type'
[  247.700679][ T5819] usb 4-1: Using ep0 maxpacket: 8
[  247.719266][ T5819] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  247.748912][ T5819] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  247.768952][ T5819] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  247.795707][ T5819] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  247.929063][ T5884] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  248.001358][ T5819] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  248.011076][ T5819] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.079341][ T5884] usb 2-1: device descriptor read/64, error -71
[  248.339205][ T5884] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  248.579746][ T7535] delete_channel: no stack
[  248.589145][ T5884] usb 2-1: device descriptor read/64, error -71
[  248.661391][ T5819] usb 4-1: GET_CAPABILITIES returned 0
[  248.769637][ T5819] usbtmc 4-1:16.0: can't read capabilities
[  248.833078][ T5819] usb 4-1: USB disconnect, device number 10
[  248.917912][ T5884] usb usb2-port1: attempt power cycle
[  249.330093][ T5884] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  249.535745][ T5884] usb 2-1: device descriptor read/8, error -71
[  250.229048][ T5884] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  251.096096][ T5884] usb 2-1: device descriptor read/8, error -71
[  251.199365][ T7571] FAULT_INJECTION: forcing a failure.
[  251.199365][ T7571] name failslab, interval 1, probability 0, space 0, times 0
[  251.212219][ T7571] CPU: 1 UID: 0 PID: 7571 Comm: syz.3.469 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  251.212239][ T7571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  251.212250][ T7571] Call Trace:
[  251.212257][ T7571]  <TASK>
[  251.212264][ T7571]  dump_stack_lvl+0x189/0x250
[  251.212295][ T7571]  ? __pfx____ratelimit+0x10/0x10
[  251.212319][ T7571]  ? __pfx_dump_stack_lvl+0x10/0x10
[  251.212344][ T7571]  ? __pfx__printk+0x10/0x10
[  251.212364][ T7571]  ? __pfx___might_resched+0x10/0x10
[  251.212389][ T7571]  ? fs_reclaim_acquire+0x7d/0x100
[  251.212417][ T7571]  should_fail_ex+0x414/0x560
[  251.212442][ T7571]  should_failslab+0xa8/0x100
[  251.212466][ T7571]  kmem_cache_alloc_noprof+0x73/0x3c0
[  251.212486][ T7571]  ? security_file_alloc+0x34/0x330
[  251.212511][ T7571]  security_file_alloc+0x34/0x330
[  251.212534][ T7571]  init_file+0x93/0x2f0
[  251.212562][ T7571]  alloc_empty_file+0x6e/0x1d0
[  251.212588][ T7571]  alloc_file_pseudo+0x13d/0x210
[  251.212616][ T7571]  ? __pfx_alloc_file_pseudo+0x10/0x10
[  251.212639][ T7571]  ? evm_inode_alloc_security+0x40/0xb0
[  251.212663][ T7571]  ? security_inode_alloc+0xd5/0x330
[  251.212689][ T7571]  sock_alloc_file+0xb8/0x2e0
[  251.212724][ T7571]  do_accept+0x34b/0x680
[  251.212745][ T7571]  ? __pfx_do_accept+0x10/0x10
[  251.212792][ T7571]  __sys_accept4+0x11c/0x1c0
[  251.212810][ T7571]  ? __pfx___sys_accept4+0x10/0x10
[  251.212836][ T7571]  __x64_sys_accept4+0x9a/0xb0
[  251.212853][ T7571]  do_syscall_64+0xfa/0x3b0
[  251.212879][ T7571]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.212896][ T7571]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  251.212912][ T7571]  ? clear_bhb_loop+0x60/0xb0
[  251.212933][ T7571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  251.212950][ T7571] RIP: 0033:0x7f3c16b8e929
[  251.212965][ T7571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  251.212979][ T7571] RSP: 002b:00007f3c1798e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000120
[  251.212997][ T7571] RAX: ffffffffffffffda RBX: 00007f3c16db6160 RCX: 00007f3c16b8e929
[  251.213009][ T7571] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  251.213019][ T7571] RBP: 00007f3c1798e090 R08: 0000000000000000 R09: 0000000000000000
[  251.213029][ T7571] R10: 0000000000000800 R11: 0000000000000246 R12: 0000000000000001
[  251.213039][ T7571] R13: 0000000000000000 R14: 00007f3c16db6160 R15: 00007ffe8343ce48
[  251.213066][ T7571]  </TASK>
[  251.216628][ T5884] usb usb2-port1: unable to enumerate USB device
[  251.564580][ T7573] autofs: Unknown parameter '0x0000000000000000'
[  251.714385][ T7575] tmpfs: Bad value for 'mpol'
[  251.809079][ T7579] netlink: 8 bytes leftover after parsing attributes in process `syz.1.473'.
[  252.121565][ T7584] netlink: 12 bytes leftover after parsing attributes in process `syz.4.472'.
[  252.130663][ T7584] netlink: 12 bytes leftover after parsing attributes in process `syz.4.472'.
[  252.193192][ T7579] netlink: 4 bytes leftover after parsing attributes in process `syz.1.473'.
[  252.629020][ T7579] netlink: 52 bytes leftover after parsing attributes in process `syz.1.473'.
[  252.694607][ T7582] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  252.979127][ T7591] FAULT_INJECTION: forcing a failure.
[  252.979127][ T7591] name failslab, interval 1, probability 0, space 0, times 0
[  252.998472][ T7591] CPU: 0 UID: 0 PID: 7591 Comm: syz.2.476 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  252.998495][ T7591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  252.998505][ T7591] Call Trace:
[  252.998512][ T7591]  <TASK>
[  252.998520][ T7591]  dump_stack_lvl+0x189/0x250
[  252.998550][ T7591]  ? lockdep_hardirqs_on+0x9c/0x150
[  252.998576][ T7591]  ? __pfx_dump_stack_lvl+0x10/0x10
[  252.998609][ T7591]  ? dump_stack+0x9/0x20
[  252.998639][ T7591]  should_fail_ex+0x414/0x560
[  252.998664][ T7591]  should_failslab+0xa8/0x100
[  252.998689][ T7591]  __kmalloc_cache_noprof+0x70/0x3d0
[  252.998710][ T7591]  ? drm_mode_duplicate+0x61/0xe0
[  252.998732][ T7591]  drm_mode_duplicate+0x61/0xe0
[  252.998748][ T7591]  ? __pfx___sanitizer_cov_trace_const_cmp4+0x10/0x10
[  252.998772][ T7591]  drm_add_modes_noedid+0x130/0x230
[  252.998799][ T7591]  vkms_conn_get_modes+0x20/0x40
[  252.998826][ T7591]  drm_helper_probe_single_connector_modes+0x8c5/0x17d0
[  252.998881][ T7591]  ? __pfx_drm_helper_probe_single_connector_modes+0x10/0x10
[  252.998926][ T7591]  ? do_raw_spin_unlock+0x122/0x240
[  252.998948][ T7591]  ? _raw_spin_unlock+0x28/0x50
[  252.998968][ T7591]  ? drm_is_current_master+0x19f/0x200
[  252.998990][ T7591]  drm_mode_getconnector+0x659/0x1370
[  252.999010][ T7591]  ? __lock_acquire+0xab9/0xd20
[  252.999043][ T7591]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  252.999061][ T7591]  ? drm_dev_enter+0x49/0x150
[  252.999103][ T7591]  drm_ioctl_kernel+0x2cc/0x390
[  252.999125][ T7591]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  252.999145][ T7591]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  252.999176][ T7591]  drm_ioctl+0x67f/0xb10
[  252.999193][ T7591]  ? rcu_is_watching+0x15/0xb0
[  252.999222][ T7591]  ? __pfx_drm_mode_getconnector+0x10/0x10
[  252.999247][ T7591]  ? __pfx_drm_ioctl+0x10/0x10
[  252.999290][ T7591]  ? __pfx_drm_ioctl+0x10/0x10
[  252.999310][ T7591]  __se_sys_ioctl+0xfc/0x170
[  252.999331][ T7591]  do_syscall_64+0xfa/0x3b0
[  252.999358][ T7591]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.999374][ T7591]  ? asm_sysvec_call_function_single+0x1a/0x20
[  252.999391][ T7591]  ? clear_bhb_loop+0x60/0xb0
[  252.999420][ T7591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.999437][ T7591] RIP: 0033:0x7f5e2638e929
[  252.999452][ T7591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  252.999466][ T7591] RSP: 002b:00007f5e2717c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  252.999484][ T7591] RAX: ffffffffffffffda RBX: 00007f5e265b6080 RCX: 00007f5e2638e929
[  252.999495][ T7591] RDX: 00002000000003c0 RSI: 00000000c05064a7 RDI: 0000000000000003
[  252.999506][ T7591] RBP: 00007f5e2717c090 R08: 0000000000000000 R09: 0000000000000000
[  252.999516][ T7591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  252.999526][ T7591] R13: 0000000000000000 R14: 00007f5e265b6080 R15: 00007ffd48c1adb8
[  252.999553][ T7591]  </TASK>
[  253.837655][ T7601] FAULT_INJECTION: forcing a failure.
[  253.837655][ T7601] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  253.864750][ T7601] CPU: 1 UID: 0 PID: 7601 Comm: syz.2.480 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  253.864773][ T7601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  253.864784][ T7601] Call Trace:
[  253.864792][ T7601]  <TASK>
[  253.864799][ T7601]  dump_stack_lvl+0x189/0x250
[  253.864831][ T7601]  ? __pfx____ratelimit+0x10/0x10
[  253.864856][ T7601]  ? __pfx_dump_stack_lvl+0x10/0x10
[  253.864884][ T7601]  ? __pfx__printk+0x10/0x10
[  253.864904][ T7601]  ? __pfx_binder_debug+0x10/0x10
[  253.864932][ T7601]  should_fail_ex+0x414/0x560
[  253.864958][ T7601]  _copy_to_user+0x31/0xb0
[  253.864989][ T7601]  binder_ioctl_write_read+0x9517/0xa000
[  253.865024][ T7601]  ? is_bpf_text_address+0x26/0x2b0
[  253.865053][ T7601]  ? kernel_text_address+0xa5/0xe0
[  253.865079][ T7601]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  253.865113][ T7601]  ? __pfx_binder_ioctl_write_read+0x10/0x10
[  253.865132][ T7601]  ? stack_trace_save+0x9c/0xe0
[  253.865152][ T7601]  ? stack_depot_save_flags+0x40/0x900
[  253.865183][ T7601]  ? kasan_save_track+0x4f/0x80
[  253.865201][ T7601]  ? kasan_save_track+0x3e/0x80
[  253.865227][ T7601]  ? kasan_save_free_info+0x46/0x50
[  253.865252][ T7601]  ? __kasan_slab_free+0x62/0x70
[  253.865271][ T7601]  ? kfree+0x18e/0x440
[  253.865288][ T7601]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  253.865308][ T7601]  ? security_file_ioctl+0xcb/0x2d0
[  253.865339][ T7601]  ? __se_sys_ioctl+0x47/0x170
[  253.865354][ T7601]  ? do_syscall_64+0xfa/0x3b0
[  253.865378][ T7601]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.865414][ T7601]  ? __pfx_binder_debug+0x10/0x10
[  253.865430][ T7601]  ? do_raw_spin_lock+0x121/0x290
[  253.865463][ T7601]  ? _raw_spin_unlock+0x28/0x50
[  253.865483][ T7601]  ? binder_get_thread+0x178/0x6d0
[  253.865506][ T7601]  binder_ioctl+0x3e0/0x19c0
[  253.865525][ T7601]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  253.865563][ T7601]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  253.865585][ T7601]  ? tomoyo_path_number_perm+0x4e2/0x5a0
[  253.865605][ T7601]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  253.865627][ T7601]  ? __pfx_binder_ioctl+0x10/0x10
[  253.865646][ T7601]  ? smack_log+0xef/0x3f0
[  253.865675][ T7601]  ? __pfx_smack_log+0x10/0x10
[  253.865704][ T7601]  ? smk_access+0x14c/0x4e0
[  253.865737][ T7601]  ? smk_tskacc+0x2fc/0x370
[  253.865770][ T7601]  ? smack_file_ioctl+0x2a9/0x340
[  253.865792][ T7601]  ? __pfx_smack_file_ioctl+0x10/0x10
[  253.865823][ T7601]  ? __fget_files+0x2a/0x420
[  253.865846][ T7601]  ? __fget_files+0x3a0/0x420
[  253.865869][ T7601]  ? __fget_files+0x2a/0x420
[  253.865897][ T7601]  ? bpf_lsm_file_ioctl+0x9/0x20
[  253.865922][ T7601]  ? __pfx_binder_ioctl+0x10/0x10
[  253.865942][ T7601]  __se_sys_ioctl+0xfc/0x170
[  253.865963][ T7601]  do_syscall_64+0xfa/0x3b0
[  253.865989][ T7601]  ? lockdep_hardirqs_on+0x9c/0x150
[  253.866013][ T7601]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.866035][ T7601]  ? clear_bhb_loop+0x60/0xb0
[  253.866075][ T7601]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.866094][ T7601] RIP: 0033:0x7f5e2638e929
[  253.866112][ T7601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  253.866128][ T7601] RSP: 002b:00007f5e2719d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  253.866150][ T7601] RAX: ffffffffffffffda RBX: 00007f5e265b5fa0 RCX: 00007f5e2638e929
[  253.866164][ T7601] RDX: 00002000000003c0 RSI: 00000000c0306201 RDI: 0000000000000003
[  253.866177][ T7601] RBP: 00007f5e2719d090 R08: 0000000000000000 R09: 0000000000000000
[  253.866189][ T7601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  253.866201][ T7601] R13: 0000000000000000 R14: 00007f5e265b5fa0 R15: 00007ffd48c1adb8
[  253.866241][ T7601]  </TASK>
[  253.866754][ T7601] binder: 7600:7601 ioctl c0306201 2000000003c0 returned -14
[  254.310745][ T7607] autofs: Unknown parameter '0x0000000000000000'
[  255.432629][ T5938] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  255.641384][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  255.688081][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  257.825410][ T5938] usb 5-1: config 220 has too many interfaces: 184, using maximum allowed: 32
[  257.915711][ T5938] usb 5-1: config 220 has 1 interface, different from the descriptor's value: 184
[  258.057089][ T5938] usb 5-1: New USB device found, idVendor=0c45, idProduct=8008, bcdDevice=e1.85
[  258.176429][ T5938] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.203175][ T7631] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  258.220960][ T7631] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  258.616792][ T5938] gspca_main: sn9c2028-2.14.0 probing 0c45:8008
[  258.951161][ T5938] gspca_sn9c2028: read1 error -71
[  258.956576][ T5938] gspca_sn9c2028: read1 error -71
[  259.650028][ T5938] gspca_sn9c2028: read1 error -71
[  259.663738][ T5938] sn9c2028 5-1:220.0: probe with driver sn9c2028 failed with error -71
[  259.698184][ T5938] usb 5-1: USB disconnect, device number 9
[  260.053523][ T7649] autofs: Unknown parameter 'fd0x0000000000000000'
[  260.308600][ T7658] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  260.390079][ T7658] netlink: 12 bytes leftover after parsing attributes in process `syz.4.496'.
[  260.399148][ T7658] netlink: 12 bytes leftover after parsing attributes in process `syz.4.496'.
[  260.666043][ T7657] syz.2.494: attempt to access beyond end of device
[  260.666043][ T7657] nbd2: rw=6144, sector=128, nr_sectors = 8 limit=0
[  260.689133][ T7657] gfs2: error -5 reading superblock
[  262.748978][ T5831] Bluetooth: hci4: command 0x0405 tx timeout
[  262.954876][ T7680] netlink: 8 bytes leftover after parsing attributes in process `syz.3.500'.
[  263.201947][ T7683] FAULT_INJECTION: forcing a failure.
[  263.201947][ T7683] name failslab, interval 1, probability 0, space 0, times 0
[  263.216347][ T7683] CPU: 0 UID: 0 PID: 7683 Comm: syz.4.501 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  263.216370][ T7683] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  263.216382][ T7683] Call Trace:
[  263.216388][ T7683]  <TASK>
[  263.216394][ T7683]  dump_stack_lvl+0x189/0x250
[  263.216416][ T7683]  ? __pfx____ratelimit+0x10/0x10
[  263.216434][ T7683]  ? __pfx_dump_stack_lvl+0x10/0x10
[  263.216453][ T7683]  ? __pfx__printk+0x10/0x10
[  263.216469][ T7683]  ? ref_tracker_alloc+0x318/0x460
[  263.216493][ T7683]  should_fail_ex+0x414/0x560
[  263.216510][ T7683]  should_failslab+0xa8/0x100
[  263.216528][ T7683]  kmem_cache_alloc_noprof+0x73/0x3c0
[  263.216542][ T7683]  ? skb_clone+0x212/0x3a0
[  263.216560][ T7683]  skb_clone+0x212/0x3a0
[  263.216577][ T7683]  __netlink_deliver_tap+0x404/0x850
[  263.216598][ T7683]  ? netlink_deliver_tap+0x2e/0x1b0
[  263.216612][ T7683]  netlink_deliver_tap+0x19c/0x1b0
[  263.216625][ T7683]  netlink_unicast+0x72f/0x8d0
[  263.216652][ T7683]  netlink_sendmsg+0x805/0xb30
[  263.216671][ T7683]  ? __pfx_netlink_sendmsg+0x10/0x10
[  263.216691][ T7683]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  263.216706][ T7683]  ? __pfx_netlink_sendmsg+0x10/0x10
[  263.216738][ T7683]  __sock_sendmsg+0x219/0x270
[  263.216762][ T7683]  ____sys_sendmsg+0x505/0x830
[  263.216784][ T7683]  ? __pfx_____sys_sendmsg+0x10/0x10
[  263.216807][ T7683]  ? import_iovec+0x74/0xa0
[  263.216832][ T7683]  ___sys_sendmsg+0x21f/0x2a0
[  263.216851][ T7683]  ? __pfx____sys_sendmsg+0x10/0x10
[  263.216895][ T7683]  ? __fget_files+0x2a/0x420
[  263.216914][ T7683]  ? __fget_files+0x3a0/0x420
[  263.216941][ T7683]  __x64_sys_sendmsg+0x19b/0x260
[  263.216960][ T7683]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  263.216984][ T7683]  ? __pfx_ksys_write+0x10/0x10
[  263.217005][ T7683]  ? rcu_is_watching+0x15/0xb0
[  263.217040][ T7683]  ? do_syscall_64+0xbe/0x3b0
[  263.217076][ T7683]  do_syscall_64+0xfa/0x3b0
[  263.217104][ T7683]  ? lockdep_hardirqs_on+0x9c/0x150
[  263.217132][ T7683]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.217153][ T7683]  ? clear_bhb_loop+0x60/0xb0
[  263.217171][ T7683]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  263.217186][ T7683] RIP: 0033:0x7f25b1b8e929
[  263.217199][ T7683] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  263.217214][ T7683] RSP: 002b:00007f25b293b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  263.217230][ T7683] RAX: ffffffffffffffda RBX: 00007f25b1db6080 RCX: 00007f25b1b8e929
[  263.217241][ T7683] RDX: 0000000004008040 RSI: 0000200000000140 RDI: 0000000000000004
[  263.217251][ T7683] RBP: 00007f25b293b090 R08: 0000000000000000 R09: 0000000000000000
[  263.217260][ T7683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  263.217268][ T7683] R13: 0000000000000000 R14: 00007f25b1db6080 R15: 00007ffff4ca6d88
[  263.217291][ T7683]  </TASK>
[  264.220762][ T7680] kthread_run failed with err -4
[  264.234872][ T7683] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  264.504517][ T7696] autofs: Unknown parameter 'fd0x0000000000000000'
[  264.618165][ T7700] overlay: Unknown parameter '/'
[  266.977738][ T7717] syz.2.514: attempt to access beyond end of device
[  266.977738][ T7717] nbd2: rw=6144, sector=128, nr_sectors = 8 limit=0
[  266.991050][ T7717] gfs2: error -5 reading superblock
[  267.859485][ T7737] autofs: Unknown parameter 'fd0x0000000000000000'
[  268.322765][  T979] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  269.416431][  T979] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  269.519357][ T7742] syz.2.520 (7742): drop_caches: 2
[  269.558927][  T979] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  270.049092][  T979] usb 4-1: Product: syz
[  270.109503][  T979] usb 4-1: Manufacturer: syz
[  270.144593][  T979] usb 4-1: SerialNumber: syz
[  270.184058][  T979] usb 4-1: config 0 descriptor??
[  270.269162][ T7757] tun0: tun_chr_ioctl cmd 1074025675
[  270.274496][ T7757] tun0: persist enabled
[  270.354581][ T7757] tun0: tun_chr_ioctl cmd 1074025675
[  270.360000][ T7757] tun0: persist enabled
[  270.744313][  T979] usb 4-1: Firmware: major: 13, minor: 242, hardware type: UNKNOWN (129)
[  270.761030][ T7766] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  271.621533][  T979] usb 4-1: Read permanent extended address ac:83:de:59:10:b2:10:83 from device
[  271.809006][  T979] usb 4-1: atusb_probe: initialization failed, error = -524
[  271.839913][  T979] atusb 4-1:0.0: probe with driver atusb failed with error -524
[  271.900008][  T979] usb 4-1: USB disconnect, device number 11
[  272.031297][ T7773] lo speed is unknown, defaulting to 1000
[  272.044850][ T7773] lo speed is unknown, defaulting to 1000
[  272.099078][ T7773] lo speed is unknown, defaulting to 1000
[  272.238940][ T7773] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  272.573208][ T7773] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  273.222433][ T7773] lo speed is unknown, defaulting to 1000
[  273.281959][ T7773] lo speed is unknown, defaulting to 1000
[  273.309242][ T7773] lo speed is unknown, defaulting to 1000
[  273.316277][ T7773] lo speed is unknown, defaulting to 1000
[  273.341542][ T7773] lo speed is unknown, defaulting to 1000
[  274.454890][ T7793] syz.4.538: attempt to access beyond end of device
[  274.454890][ T7793] nbd4: rw=6144, sector=128, nr_sectors = 8 limit=0
[  274.468187][ T7793] gfs2: error -5 reading superblock
[  275.360904][ T5964] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  275.688960][ T5964] usb 1-1: Using ep0 maxpacket: 8
[  275.700470][ T7804] openvswitch: netlink: Key type 16134 is out of range max 32
[  275.851022][ T5964] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  275.864356][ T5964] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.888900][ T5964] usb 1-1: Product: syz
[  275.893105][ T5964] usb 1-1: Manufacturer: syz
[  275.897722][ T5964] usb 1-1: SerialNumber: syz
[  276.609890][ T5964] usb 1-1: config 0 descriptor??
[  276.890226][ T5964] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  277.735775][ T7791] _ÐZ`Ô€@: entered promiscuous mode
[  277.756093][ T7820] netlink: 28 bytes leftover after parsing attributes in process `syz.4.547'.
[  278.829017][ T5877] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  279.080823][ T5964] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  279.136640][ T5877] usb 3-1: New USB device found, idVendor=13d8, idProduct=0011, bcdDevice=d0.62
[  279.181498][ T5964] usb 1-1: USB disconnect, device number 12
[  279.201430][ T5877] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.287865][ T5877] usb 3-1: Product: syz
[  279.504109][ T5877] usb 3-1: Manufacturer: syz
[  279.528407][ T5877] usb 3-1: SerialNumber: syz
[  279.536673][ T7837] syz.4.551: attempt to access beyond end of device
[  279.536673][ T7837] nbd4: rw=6144, sector=128, nr_sectors = 8 limit=0
[  279.550338][ T7837] gfs2: error -5 reading superblock
[  279.580928][ T5877] usb 3-1: config 0 descriptor??
[  279.641336][ T5877] usb 3-1: selecting invalid altsetting 1
[  279.808768][ T5877] comedi comedi0: could not switch to alternate setting 1
[  279.828911][ T5877] usbduxfast 3-1:0.0: driver 'usbduxfast' failed to auto-configure device.
[  284.226556][ T5900] usb 3-1: USB disconnect, device number 8
[  284.545607][ T7868] netlink: 48 bytes leftover after parsing attributes in process `syz.4.558'.
[  286.077015][ T7885] syz.4.564: attempt to access beyond end of device
[  286.077015][ T7885] nbd4: rw=6144, sector=128, nr_sectors = 8 limit=0
[  286.115080][ T7885] gfs2: error -5 reading superblock
[  286.131559][ T7882] netlink: 8 bytes leftover after parsing attributes in process `syz.1.565'.
[  286.405984][ T7882] netlink: 4 bytes leftover after parsing attributes in process `syz.1.565'.
[  287.563075][ T7909] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  287.671601][ T7909] netlink: 12 bytes leftover after parsing attributes in process `syz.4.572'.
[  287.681147][ T7909] netlink: 12 bytes leftover after parsing attributes in process `syz.4.572'.
[  291.513474][ T7950] netlink: 'syz.2.584': attribute type 2 has an invalid length.
[  294.060096][ T7965] netlink: zone id is out of range
[  295.513028][ T7982] netlink: 348 bytes leftover after parsing attributes in process `syz.1.593'.
[  297.195983][ T7995] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  297.313418][ T7995] netlink: 20 bytes leftover after parsing attributes in process `syz.4.596'.
[  298.219473][ T5900] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  298.420645][ T5900] usb 1-1: Using ep0 maxpacket: 16
[  298.451794][ T5900] usb 1-1: too many endpoints for config 0 interface 0 altsetting 255: 254, using maximum allowed: 30
[  299.084269][ T5900] usb 1-1: config 0 interface 0 altsetting 255 endpoint 0x81 has an invalid bInterval 197, changing to 11
[  299.180247][ T5900] usb 1-1: config 0 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[  299.216892][ T5900] usb 1-1: config 0 interface 0 has no altsetting 0
[  299.247366][ T5900] usb 1-1: New USB device found, idVendor=0853, idProduct=0148, bcdDevice= 0.00
[  299.292230][ T5900] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  299.322992][ T5900] usb 1-1: config 0 descriptor??
[  299.728970][   T10] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  300.031368][ T5900] topre 0003:0853:0148.0001: hidraw0: USB HID vc9.b6 Device [HID 0853:0148] on usb-dummy_hcd.0-1/input0
[  300.042755][   T10] usb 4-1: Using ep0 maxpacket: 8
[  300.086876][   T10] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  300.208535][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  300.605667][ T5964] usb 1-1: USB disconnect, device number 13
[  300.742294][   T10] usb 4-1: Product: syz
[  300.746497][   T10] usb 4-1: Manufacturer: syz
[  300.752939][   T10] usb 4-1: SerialNumber: syz
[  300.761188][   T10] usb 4-1: config 0 descriptor??
[  300.852151][ T8021] bridge_slave_0: left allmulticast mode
[  300.861031][ T8021] bridge_slave_0: left promiscuous mode
[  300.869353][ T8021] bridge0: port 1(bridge_slave_0) entered disabled state
[  300.914615][ T8021] bridge_slave_1: left allmulticast mode
[  300.935505][ T8021] bridge_slave_1: left promiscuous mode
[  301.609723][   T10] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  301.621154][ T8021] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.684528][ T8023] fido_id[8023]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  301.711242][ T8021] bond0: (slave bond_slave_0): Releasing backup interface
[  302.290294][ T8021] bond0: (slave bond_slave_1): Releasing backup interface
[  302.882347][ T8021] team0: Port device team_slave_0 removed
[  302.916102][ T8042] autofs: Unknown parameter 'syzkaller0'
[  302.948249][ T8021] team0: Port device team_slave_1 removed
[  303.119686][ T8010] sctp: [Deprecated]: syz.3.600 (pid 8010) Use of struct sctp_assoc_value in delayed_ack socket option.
[  303.119686][ T8010] Use struct sctp_sack_info instead
[  303.145366][ T8021] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  303.163266][ T8021] batman_adv: batadv0: Removing interface: batadv_slave_0
[  303.173182][ T8021] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  303.807788][ T8021] batman_adv: batadv0: Removing interface: batadv_slave_1
[  303.849793][ T5900] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  303.875291][ T8021] team0: Port device vlan0 removed
[  304.199766][ T5900] usb 3-1: Using ep0 maxpacket: 8
[  304.229175][   T10] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  304.254411][ T5900] usb 3-1: config index 0 descriptor too short (expected 16411, got 27)
[  304.315883][   T10] usb 4-1: USB disconnect, device number 12
[  304.327515][ T5900] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  304.405477][ T5900] usb 3-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[  304.422914][ T5900] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  304.440739][ T5900] usb 3-1: Product: syz
[  304.440762][ T5900] usb 3-1: Manufacturer: syz
[  304.440776][ T5900] usb 3-1: SerialNumber: syz
[  304.444245][ T5900] usb 3-1: config 0 descriptor??
[  304.462575][ T5900] streamzap 3-1:0.0: streamzap_probe: Unexpected desc.bNumEndpoints (0)
[  304.775895][ T5964] usb 3-1: USB disconnect, device number 9
[  304.830403][ T5900] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  305.370911][ T5900] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  305.392523][ T5900] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  305.504576][ T5900] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  305.606735][ T5900] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  305.661967][ T5900] usb 1-1: SerialNumber: syz
[  305.893839][ T5900] usb 1-1: 0:2 : does not exist
[  305.898805][ T5900] usb 1-1: unit 5: unexpected type 0x0c
[  305.925343][ T5900] usb 1-1: USB disconnect, device number 14
[  306.022473][   T10] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  307.122742][   T10] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  307.124542][ T5834] udevd[5834]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  307.158686][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  307.202764][   T10] usb 4-1: Product: syz
[  307.213909][   T10] usb 4-1: Manufacturer: syz
[  307.223584][   T10] usb 4-1: SerialNumber: syz
[  307.262772][   T10] usb 4-1: config 0 descriptor??
[  307.718634][   T10] usb 4-1: Firmware: major: 13, minor: 242, hardware type: UNKNOWN (129)
[  307.959340][   T10] usb 4-1: Read permanent extended address ac:83:de:59:10:b2:10:83 from device
[  307.987602][   T10] usb 4-1: atusb_probe: initialization failed, error = -524
[  308.681740][   T10] atusb 4-1:0.0: probe with driver atusb failed with error -524
[  309.188142][   T10] usb 4-1: USB disconnect, device number 13
[  309.489412][  T979] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  310.759438][  T979] usb 2-1: Using ep0 maxpacket: 8
[  311.299146][  T979] usb 2-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00
[  311.322948][  T979] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  311.344958][  T979] usb 2-1: Product: syz
[  311.350346][ T8128] netlink: 8 bytes leftover after parsing attributes in process `syz.2.630'.
[  311.365822][ T8130] FAULT_INJECTION: forcing a failure.
[  311.365822][ T8130] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  311.403693][ T8130] CPU: 1 UID: 0 PID: 8130 Comm: syz.3.631 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  311.403716][ T8130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  311.403726][ T8130] Call Trace:
[  311.403733][ T8130]  <TASK>
[  311.403741][ T8130]  dump_stack_lvl+0x189/0x250
[  311.403772][ T8130]  ? __pfx____ratelimit+0x10/0x10
[  311.403797][ T8130]  ? __pfx_dump_stack_lvl+0x10/0x10
[  311.403822][ T8130]  ? __pfx__printk+0x10/0x10
[  311.403839][ T8130]  ? __might_fault+0xb0/0x130
[  311.403870][ T8130]  should_fail_ex+0x414/0x560
[  311.403894][ T8130]  _copy_from_user+0x2d/0xb0
[  311.403923][ T8130]  ___sys_sendmsg+0x158/0x2a0
[  311.403946][ T8130]  ? __pfx____sys_sendmsg+0x10/0x10
[  311.403997][ T8130]  ? __fget_files+0x2a/0x420
[  311.404027][ T8130]  ? __fget_files+0x3a0/0x420
[  311.404058][ T8130]  __x64_sys_sendmsg+0x19b/0x260
[  311.404081][ T8130]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  311.404110][ T8130]  ? __pfx_ksys_write+0x10/0x10
[  311.404127][ T8130]  ? rcu_is_watching+0x15/0xb0
[  311.404156][ T8130]  ? do_syscall_64+0xbe/0x3b0
[  311.404180][ T8130]  do_syscall_64+0xfa/0x3b0
[  311.404203][ T8130]  ? lockdep_hardirqs_on+0x9c/0x150
[  311.404226][ T8130]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.404243][ T8130]  ? clear_bhb_loop+0x60/0xb0
[  311.404263][ T8130]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.404279][ T8130] RIP: 0033:0x7f3c16b8e929
[  311.404295][ T8130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  311.404310][ T8130] RSP: 002b:00007f3c179d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  311.404328][ T8130] RAX: ffffffffffffffda RBX: 00007f3c16db5fa0 RCX: 00007f3c16b8e929
[  311.404341][ T8130] RDX: 0000000020000000 RSI: 00002000000003c0 RDI: 0000000000000003
[  311.404352][ T8130] RBP: 00007f3c179d0090 R08: 0000000000000000 R09: 0000000000000000
[  311.404363][ T8130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  311.404373][ T8130] R13: 0000000000000000 R14: 00007f3c16db5fa0 R15: 00007ffe8343ce48
[  311.404400][ T8130]  </TASK>
[  311.839092][  T979] usb 2-1: Manufacturer: syz
[  311.843740][  T979] usb 2-1: SerialNumber: syz
[  312.039124][  T979] usb 2-1: config 0 descriptor??
[  312.050525][ T8128] netlink: 4 bytes leftover after parsing attributes in process `syz.2.630'.
[  312.053641][  T979] radio-usb-si4713 2-1:0.0: Si4713 development board discovered: (10C4:8244)
[  313.505857][  T979] radio-usb-si4713 2-1:0.0: probe with driver radio-usb-si4713 failed with error -71
[  313.574872][  T979] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  313.659330][  T979] usb 2-1: USB disconnect, device number 11
[  315.226095][ T8161] syzkaller0: entered promiscuous mode
[  315.356620][ T8168] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[  315.409012][ T8161] syzkaller0: entered allmulticast mode
[  316.995717][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  317.002190][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  318.266406][   T30] audit: type=1326 audit(1751269511.808:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8183 comm="syz.1.645" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22a2b8e929 code=0x0
[  319.336843][ T8198] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  323.227329][ T8196] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[  323.260488][ T8196] mac80211_hwsim hwsim8 wlan0: left promiscuous mode
[  323.285051][   T30] audit: type=1326 audit(1751269516.828:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8224 comm="syz.1.657" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22a2b8e929 code=0x0
[  323.455329][ T8199] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[  323.467910][ T8199] mac80211_hwsim hwsim8 wlan0: left promiscuous mode
[  324.339436][ T8243] FAULT_INJECTION: forcing a failure.
[  324.339436][ T8243] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  324.376984][ T8243] CPU: 0 UID: 0 PID: 8243 Comm: syz.1.662 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  324.377012][ T8243] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  324.377025][ T8243] Call Trace:
[  324.377033][ T8243]  <TASK>
[  324.377042][ T8243]  dump_stack_lvl+0x189/0x250
[  324.377085][ T8243]  ? __pfx____ratelimit+0x10/0x10
[  324.377115][ T8243]  ? __pfx_dump_stack_lvl+0x10/0x10
[  324.377145][ T8243]  ? __pfx__printk+0x10/0x10
[  324.377179][ T8243]  should_fail_ex+0x414/0x560
[  324.377208][ T8243]  _copy_to_user+0x31/0xb0
[  324.377242][ T8243]  simple_read_from_buffer+0xe1/0x170
[  324.377273][ T8243]  proc_fail_nth_read+0x1df/0x250
[  324.377306][ T8243]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  324.377339][ T8243]  ? rw_verify_area+0x258/0x650
[  324.377360][ T8243]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  324.377390][ T8243]  vfs_read+0x1fd/0x980
[  324.377419][ T8243]  ? __pfx___mutex_lock+0x10/0x10
[  324.377449][ T8243]  ? __pfx_vfs_read+0x10/0x10
[  324.377473][ T8243]  ? __fget_files+0x2a/0x420
[  324.377505][ T8243]  ? __fget_files+0x3a0/0x420
[  324.377530][ T8243]  ? __fget_files+0x2a/0x420
[  324.377566][ T8243]  ksys_read+0x145/0x250
[  324.377592][ T8243]  ? __pfx_ksys_read+0x10/0x10
[  324.377611][ T8243]  ? rcu_is_watching+0x15/0xb0
[  324.377647][ T8243]  ? do_syscall_64+0xbe/0x3b0
[  324.377680][ T8243]  do_syscall_64+0xfa/0x3b0
[  324.377708][ T8243]  ? lockdep_hardirqs_on+0x9c/0x150
[  324.377735][ T8243]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.377755][ T8243]  ? clear_bhb_loop+0x60/0xb0
[  324.377780][ T8243]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  324.377800][ T8243] RIP: 0033:0x7f22a2b8d33c
[  324.377818][ T8243] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  324.377836][ T8243] RSP: 002b:00007f22a395b030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  324.377857][ T8243] RAX: ffffffffffffffda RBX: 00007f22a2db5fa0 RCX: 00007f22a2b8d33c
[  324.377872][ T8243] RDX: 000000000000000f RSI: 00007f22a395b0a0 RDI: 0000000000000005
[  324.377885][ T8243] RBP: 00007f22a395b090 R08: 0000000000000000 R09: 0000000000000000
[  324.377898][ T8243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  324.377910][ T8243] R13: 0000000000000000 R14: 00007f22a2db5fa0 R15: 00007ffedf11c308
[  324.377943][ T8243]  </TASK>
[  324.929002][   T10] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  325.297747][   T10] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  325.632550][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.646244][   T10] usb 5-1: Product: syz
[  325.653962][   T10] usb 5-1: Manufacturer: syz
[  325.658590][   T10] usb 5-1: SerialNumber: syz
[  325.669458][   T10] usb 5-1: config 0 descriptor??
[  326.107516][   T10] usb 5-1: Firmware: major: 13, minor: 242, hardware type: UNKNOWN (129)
[  326.380242][   T10] usb 5-1: Read permanent extended address ac:83:de:59:10:b2:10:83 from device
[  326.418471][   T10] usb 5-1: atusb_probe: initialization failed, error = -524
[  326.497911][   T10] atusb 5-1:0.0: probe with driver atusb failed with error -524
[  327.299491][ T5900] usb 5-1: USB disconnect, device number 10
[  327.598970][ T8267] syz.1.669: attempt to access beyond end of device
[  327.598970][ T8267] nbd1: rw=6144, sector=128, nr_sectors = 8 limit=0
[  327.612116][ T8267] gfs2: error -5 reading superblock
[  330.644276][ T8292] input: syz1 as /devices/virtual/input/input10
[  332.259439][ T5900] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  332.696697][ T8318] syz.3.684: attempt to access beyond end of device
[  332.696697][ T8318] nbd3: rw=6144, sector=128, nr_sectors = 8 limit=0
[  332.709933][ T8318] gfs2: error -5 reading superblock
[  332.741863][ T5900] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  332.767837][ T5900] usb 1-1: config 0 has no interface number 0
[  333.042925][ T5900] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  333.150651][ T5938] IPVS: starting estimator thread 0...
[  333.179892][ T8324] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  333.288762][ T5900] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.313828][ T5900] usb 1-1: Product: syz
[  333.318039][ T5900] usb 1-1: Manufacturer: syz
[  333.363218][ T5900] usb 1-1: SerialNumber: syz
[  333.368944][ T8326] IPVS: using max 29 ests per chain, 69600 per kthread
[  333.409865][ T8321] netlink: 8 bytes leftover after parsing attributes in process `syz.1.685'.
[  333.418682][ T8321] netlink: 8 bytes leftover after parsing attributes in process `syz.1.685'.
[  333.435467][ T5900] usb 1-1: config 0 descriptor??
[  333.783591][ T5900] usb 1-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  333.794493][ T8328] kvm: kvm [8327]: vcpu1, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x800
[  333.808634][ T5900] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  333.819523][ T5900] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  333.827577][ T5900] usb 1-1: media controller created
[  333.852790][ T5900] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  335.417278][ T5900] i2c i2c-1: ec100: i2c rd failed=-110 reg=33
[  335.803268][ T5900] usb 1-1: USB disconnect, device number 15
[  337.961551][ T8375] syz.3.696: attempt to access beyond end of device
[  337.961551][ T8375] nbd3: rw=6144, sector=128, nr_sectors = 8 limit=0
[  337.974700][ T8375] gfs2: error -5 reading superblock
[  338.092048][ T8378] netlink: 20 bytes leftover after parsing attributes in process `syz.0.698'.
[  338.147084][ T8378] loop2: detected capacity change from 0 to 7
[  338.202676][ T8378]  loop2: [CUMANA/ADFS] p1 [ADFS] p1
[  338.233313][ T8378] loop2: partition table partially beyond EOD, truncated
[  338.258359][ T8378] loop2: p1 size 2989602745 extends beyond EOD, truncated
[  338.657097][ T5834] udevd[5834]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  339.119489][ T5884] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  339.319543][ T5884] usb 1-1: Using ep0 maxpacket: 8
[  339.336097][ T5884] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  339.353174][ T8387] mmap: syz.1.701 (8387): VmData 25841664 exceed data ulimit 7. Update limits or use boot option ignore_rlimit_data.
[  339.354853][ T5884] usb 1-1: config 179 has no interface number 0
[  339.397522][ T5884] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  339.422662][ T5884] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  339.443156][ T5884] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  339.455498][ T5884] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  339.475590][ T5884] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  339.500538][ T5884] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  339.509784][  T979] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  339.520537][ T5884] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  339.542162][ T8388] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  339.673489][  T979] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[  339.682128][  T979] usb 4-1: config 0 has no interface number 0
[  340.669243][  T979] usb 4-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  340.685511][ T8388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  340.694259][  T979] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  340.709594][ T8388] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  340.984376][  T979] usb 4-1: Product: syz
[  340.989272][  T979] usb 4-1: Manufacturer: syz
[  340.994377][  T979] usb 4-1: SerialNumber: syz
[  341.003189][  T979] usb 4-1: config 0 descriptor??
[  341.052052][   T30] audit: type=1326 audit(1751269534.608:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8408 comm="syz.1.707" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f22a2b8e929 code=0x0
[  341.170140][ T8388] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  341.353206][ T8388] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  341.361909][  T979] usb 4-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  341.375985][  T979] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  341.393599][  T979] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  341.402023][  T979] usb 4-1: media controller created
[  341.403435][ T5900] usb 1-1: USB disconnect, device number 16
[  341.407297][    C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  341.407359][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  341.449363][  T979] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  342.683504][ T5938] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  342.719458][  T979] i2c i2c-1: ec100: i2c rd failed=-32 reg=33
[  343.928185][ T5938] usb 2-1: New USB device found, idVendor=13d8, idProduct=0011, bcdDevice=d0.62
[  343.962660][  T979] usb 4-1: USB disconnect, device number 14
[  343.989591][ T5938] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  344.049997][ T5938] usb 2-1: Product: syz
[  344.071980][ T5938] usb 2-1: Manufacturer: syz
[  344.084377][ T5938] usb 2-1: SerialNumber: syz
[  344.119766][ T5938] usb 2-1: config 0 descriptor??
[  344.349188][ T5938] usb 2-1: selecting invalid altsetting 1
[  344.355332][ T5938] comedi comedi0: could not switch to alternate setting 1
[  344.372277][ T5938] usbduxfast 2-1:0.0: driver 'usbduxfast' failed to auto-configure device.
[  344.822770][  T979] usb 2-1: USB disconnect, device number 12
[  347.328496][ T8461] netlink: 8 bytes leftover after parsing attributes in process `syz.1.720'.
[  348.092109][ T8467] kvm: kvm [8464]: vcpu1, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x800
[  348.528294][ T5900] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  348.685139][ T8487] kvm: kvm [8486]: vcpu1, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x80
[  348.729475][ T8487] kvm: kvm [8486]: vcpu1, guest rIP: 0x1b8 Unhandled WRMSR(0x186) = 0x80
[  348.778554][ T5900] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  348.812282][ T5900] usb 5-1: config 0 has no interface number 0
[  348.846853][ T5900] usb 5-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  348.863659][ T8493] syzkaller0: entered promiscuous mode
[  348.894943][ T5900] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  348.905094][ T8493] syzkaller0: entered allmulticast mode
[  348.937536][ T5900] usb 5-1: Product: syz
[  348.969173][ T5900] usb 5-1: Manufacturer: syz
[  349.007533][ T5900] usb 5-1: SerialNumber: syz
[  349.040536][ T5900] usb 5-1: config 0 descriptor??
[  349.823669][ T8505] netlink: 8 bytes leftover after parsing attributes in process `syz.2.734'.
[  349.839403][ T5900] usb 5-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  349.856890][ T5900] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  349.874068][ T5900] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  349.882973][ T5900] usb 5-1: media controller created
[  350.162041][ T5900] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  350.939082][   T49] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  351.101131][   T49] usb 2-1: Using ep0 maxpacket: 8
[  351.112536][   T49] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  351.124610][   T49] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.155478][   T49] pvrusb2: Hardware description: Terratec Grabster AV400
[  351.165570][   T49] pvrusb2: **********
[  351.170986][   T49] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  351.184142][   T49] pvrusb2: Important functionality might not be entirely working.
[  351.193679][   T49] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  351.208720][   T49] pvrusb2: **********
[  351.349368][ T5900] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[  351.381607][ T2343] pvrusb2: Invalid write control endpoint
[  351.482392][ T5900] usb 5-1: USB disconnect, device number 11
[  351.576084][ T2343] pvrusb2: Invalid write control endpoint
[  351.588602][ T2343] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  351.610134][ T2343] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  351.621377][ T2343] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  351.634489][ T2343] pvrusb2: Device being rendered inoperable
[  351.676079][ T2343] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  351.790503][ T2343] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  351.843665][ T8523] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  351.981286][ T8523] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  352.050762][ T5825] Bluetooth: hci4: unexpected event 0x14 length: 7 > 6
[  352.155956][ T2343] pvrusb2: Attached sub-driver cx25840
[  352.220081][ T2343] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  352.231331][ T2343] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  353.858588][ T5900] usb 2-1: USB disconnect, device number 13
[  353.983975][ T8524] netdevsim netdevsim4: Direct firmware load for  failed with error -2
[  354.011082][ T8524] netdevsim netdevsim4: Falling back to sysfs fallback for: 
[  354.532592][ T8541] netlink: 'syz.1.743': attribute type 10 has an invalid length.
[  355.237972][ T8541] team0: Device ipvlan1 failed to register rx_handler
[  355.267434][ T8545] FAULT_INJECTION: forcing a failure.
[  355.267434][ T8545] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  355.303745][ T8545] CPU: 0 UID: 0 PID: 8545 Comm: syz.4.742 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  355.303768][ T8545] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  355.303780][ T8545] Call Trace:
[  355.303787][ T8545]  <TASK>
[  355.303794][ T8545]  dump_stack_lvl+0x189/0x250
[  355.303825][ T8545]  ? __pfx____ratelimit+0x10/0x10
[  355.303844][ T8545]  ? __pfx_dump_stack_lvl+0x10/0x10
[  355.303863][ T8545]  ? __pfx__printk+0x10/0x10
[  355.303875][ T8545]  ? __might_fault+0xb0/0x130
[  355.303897][ T8545]  should_fail_ex+0x414/0x560
[  355.303915][ T8545]  _copy_from_user+0x2d/0xb0
[  355.303934][ T8545]  restore_altstack+0x9d/0x4b0
[  355.303948][ T8545]  ? __pfx__raw_spin_lock_irq+0x10/0x10
[  355.303966][ T8545]  ? __pfx_restore_altstack+0x10/0x10
[  355.303982][ T8545]  ? _raw_spin_unlock_irq+0x23/0x50
[  355.303998][ T8545]  ? lockdep_hardirqs_on+0x9c/0x150
[  355.304024][ T8545]  __ia32_sys_rt_sigreturn+0x1ac/0x7b0
[  355.304042][ T8545]  ? lockdep_hardirqs_on+0x9c/0x150
[  355.304059][ T8545]  ? __pfx___ia32_sys_rt_sigreturn+0x10/0x10
[  355.304073][ T8545]  ? _raw_spin_unlock_irq+0x2e/0x50
[  355.304088][ T8545]  ? signal_setup_done+0x230/0x310
[  355.304109][ T8545]  ? __lock_acquire+0xab9/0xd20
[  355.304138][ T8545]  ? __task_pid_nr_ns+0x28/0x470
[  355.304155][ T8545]  ? do_syscall_64+0xbe/0x3b0
[  355.304175][ T8545]  do_syscall_64+0xfa/0x3b0
[  355.304192][ T8545]  ? lockdep_hardirqs_on+0x9c/0x150
[  355.304208][ T8545]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.304220][ T8545]  ? clear_bhb_loop+0x60/0xb0
[  355.304236][ T8545]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  355.304247][ T8545] RIP: 0033:0x7f25b1b2ab19
[  355.304258][ T8545] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25
[  355.304271][ T8545] RSP: 002b:00007f25b295ba80 EFLAGS: 00000202 ORIG_RAX: 000000000000000f
[  355.304285][ T8545] RAX: ffffffffffffffda RBX: 00007f25b1db5fa0 RCX: 00007f25b1b2ab19
[  355.304294][ T8545] RDX: 00007f25b295ba80 RSI: 00007f25b295bbb0 RDI: 0000000000000021
[  355.304302][ T8545] RBP: 00007f25b295c090 R08: 0000000000000000 R09: 0000000000000000
[  355.304310][ T8545] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000001
[  355.304317][ T8545] R13: 0000000000000000 R14: 00007f25b1db5fa0 R15: 00007ffff4ca6d88
[  355.304337][ T8545]  </TASK>
[  355.899065][ T5938] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  356.300822][ T5938] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  356.350901][ T5938] usb 5-1: config 0 has no interface number 0
[  356.409377][ T5938] usb 5-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  356.597965][ T5938] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  356.876821][ T5938] usb 5-1: Product: syz
[  356.890242][ T5938] usb 5-1: Manufacturer: syz
[  356.955718][ T5938] usb 5-1: SerialNumber: syz
[  356.974309][ T8557] 9pnet_fd: Insufficient options for proto=fd
[  356.982407][ T5938] usb 5-1: config 0 descriptor??
[  358.034222][ T5938] usb 5-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  358.062620][ T5938] usb 5-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  358.087066][ T8570] 9pnet_fd: Insufficient options for proto=fd
[  358.093451][ T5938] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  358.181730][ T8570] netlink: 84 bytes leftover after parsing attributes in process `syz.1.752'.
[  358.229048][ T5938] usb 5-1: media controller created
[  358.241648][ T8570] netlink: 24 bytes leftover after parsing attributes in process `syz.1.752'.
[  358.451320][ T5938] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  358.546537][ T8578] FAULT_INJECTION: forcing a failure.
[  358.546537][ T8578] name failslab, interval 1, probability 0, space 0, times 0
[  358.559469][ T8578] CPU: 0 UID: 0 PID: 8578 Comm: syz.3.751 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  358.559491][ T8578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  358.559502][ T8578] Call Trace:
[  358.559509][ T8578]  <TASK>
[  358.559517][ T8578]  dump_stack_lvl+0x189/0x250
[  358.559549][ T8578]  ? __pfx____ratelimit+0x10/0x10
[  358.559573][ T8578]  ? __pfx_dump_stack_lvl+0x10/0x10
[  358.559599][ T8578]  ? __pfx__printk+0x10/0x10
[  358.559619][ T8578]  ? __pfx___might_resched+0x10/0x10
[  358.559645][ T8578]  ? fs_reclaim_acquire+0x7d/0x100
[  358.559674][ T8578]  should_fail_ex+0x414/0x560
[  358.559699][ T8578]  should_failslab+0xa8/0x100
[  358.559724][ T8578]  __kmalloc_node_track_caller_noprof+0xcc/0x4e0
[  358.559745][ T8578]  ? ceph_parse_source+0x195/0xe40
[  358.559769][ T8578]  ? ceph_parse_source+0x1a4/0xe40
[  358.559792][ T8578]  ? rcu_is_watching+0x15/0xb0
[  358.559830][ T8578]  kstrdup+0x42/0x100
[  358.559858][ T8578]  ceph_parse_source+0x1a4/0xe40
[  358.559893][ T8578]  ? __pfx_ceph_parse_source+0x10/0x10
[  358.559928][ T8578]  ceph_parse_mount_param+0x145b/0x18c0
[  358.559959][ T8578]  ? __pfx_ceph_parse_mount_param+0x10/0x10
[  358.559990][ T8578]  ? static_key_count+0x41/0x70
[  358.560020][ T8578]  vfs_parse_fs_param+0x1a9/0x420
[  358.560046][ T8578]  __se_sys_fsconfig+0x78e/0x8d0
[  358.560078][ T8578]  ? __pfx___se_sys_fsconfig+0x10/0x10
[  358.560104][ T8578]  ? ksys_write+0x22a/0x250
[  358.560126][ T8578]  ? __pfx_ksys_write+0x10/0x10
[  358.560151][ T8578]  ? do_syscall_64+0xbe/0x3b0
[  358.560175][ T8578]  ? __x64_sys_fsconfig+0x20/0xc0
[  358.560203][ T8578]  do_syscall_64+0xfa/0x3b0
[  358.560229][ T8578]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.560246][ T8578]  ? asm_sysvec_reschedule_ipi+0x1a/0x20
[  358.560262][ T8578]  ? clear_bhb_loop+0x60/0xb0
[  358.560283][ T8578]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  358.560300][ T8578] RIP: 0033:0x7f3c16b8e929
[  358.560315][ T8578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  358.560330][ T8578] RSP: 002b:00007f3c1798e038 EFLAGS: 00000246 ORIG_RAX: 00000000000001af
[  358.560349][ T8578] RAX: ffffffffffffffda RBX: 00007f3c16db6160 RCX: 00007f3c16b8e929
[  358.560363][ T8578] RDX: 0000200000000140 RSI: 0000000000000001 RDI: 0000000000000009
[  358.560374][ T8578] RBP: 00007f3c1798e090 R08: 0000000000000000 R09: 0000000000000000
[  358.560385][ T8578] R10: 00002000000001c0 R11: 0000000000000246 R12: 0000000000000001
[  358.560395][ T8578] R13: 0000000000000000 R14: 00007f3c16db6160 R15: 00007ffe8343ce48
[  358.560423][ T8578]  </TASK>
[  358.958482][ T8569] delete_channel: no stack
[  359.092260][ T8579] syzkaller0: entered promiscuous mode
[  359.108976][ T8579] syzkaller0: entered allmulticast mode
[  359.349710][ T8585] netlink: 28 bytes leftover after parsing attributes in process `syz.0.756'.
[  359.430652][ T8589] netlink: 8 bytes leftover after parsing attributes in process `syz.0.756'.
[  359.454346][ T8589] netlink: 12 bytes leftover after parsing attributes in process `syz.0.756'.
[  359.463737][ T5938] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[  360.258880][ T5938] usb 5-1: USB disconnect, device number 12
[  360.381805][ T8605] netlink: 12 bytes leftover after parsing attributes in process `syz.0.756'.
[  362.369105][ T8618] kvm: kvm [8617]: vcpu1, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x80
[  362.378454][ T8618] kvm: kvm [8617]: vcpu1, guest rIP: 0x1b8 Unhandled WRMSR(0x186) = 0x80
[  364.052259][ T8634] 9pnet_fd: Insufficient options for proto=fd
[  364.542100][ T8596] netlink: 10 bytes leftover after parsing attributes in process `syz.0.756'.
[  365.168922][  T979] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  366.141014][  T979] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[  366.149720][  T979] usb 1-1: config 0 has no interface number 0
[  366.168590][  T979] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  366.192616][  T979] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  366.209814][  T979] usb 1-1: Product: syz
[  366.221875][  T979] usb 1-1: Manufacturer: syz
[  366.247707][  T979] usb 1-1: SerialNumber: syz
[  366.279765][  T979] usb 1-1: config 0 descriptor??
[  366.489207][   T30] audit: type=1326 audit(1751269560.038:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8656 comm="syz.4.772" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f25b1b8e929 code=0x0
[  366.533283][  T979] usb 1-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[  366.695775][  T979] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  366.710425][  T979] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[  366.721182][  T979] usb 1-1: media controller created
[  367.383027][  T979] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  368.509197][  T979] i2c i2c-1: ec100: i2c rd failed=-110 reg=33
[  368.689238][  T979] usb 1-1: USB disconnect, device number 17
[  370.470505][  T979] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  371.187460][ T8686] syzkaller0: entered promiscuous mode
[  371.193233][ T8686] syzkaller0: entered allmulticast mode
[  371.455206][ T8700] ==================================================================
[  371.463418][ T8700] BUG: KASAN: slab-use-after-free in rose_get_neigh+0x391/0x990
[  371.471083][ T8700] Read of size 1 at addr ffff888055eb4830 by task syz.3.783/8700
[  371.478816][ T8700] 
[  371.481164][ T8700] CPU: 0 UID: 0 PID: 8700 Comm: syz.3.783 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  371.481188][ T8700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  371.481203][ T8700] Call Trace:
[  371.481214][ T8700]  <TASK>
[  371.481223][ T8700]  dump_stack_lvl+0x189/0x250
[  371.481251][ T8700]  ? __virt_addr_valid+0x1c8/0x5c0
[  371.481268][ T8700]  ? rcu_is_watching+0x15/0xb0
[  371.481292][ T8700]  ? __kasan_check_byte+0x12/0x40
[  371.481314][ T8700]  ? __pfx_dump_stack_lvl+0x10/0x10
[  371.481339][ T8700]  ? rcu_is_watching+0x15/0xb0
[  371.481363][ T8700]  ? lock_release+0x4b/0x3e0
[  371.481388][ T8700]  ? __virt_addr_valid+0x1c8/0x5c0
[  371.481403][ T8700]  ? __virt_addr_valid+0x4a5/0x5c0
[  371.481421][ T8700]  print_report+0xd2/0x2b0
[  371.481442][ T8700]  ? rose_get_neigh+0x391/0x990
[  371.481465][ T8700]  kasan_report+0x118/0x150
[  371.481488][ T8700]  ? rose_get_neigh+0x391/0x990
[  371.481515][ T8700]  rose_get_neigh+0x391/0x990
[  371.481542][ T8700]  rose_connect+0x416/0x10a0
[  371.481568][ T8700]  ? __pfx_smack_socket_connect+0x10/0x10
[  371.481598][ T8700]  ? __might_fault+0xb0/0x130
[  371.481619][ T8700]  ? __pfx_rose_connect+0x10/0x10
[  371.481640][ T8700]  ? tomoyo_socket_connect_permission+0x164/0x290
[  371.481671][ T8700]  ? bpf_lsm_socket_connect+0x9/0x20
[  371.481694][ T8700]  __sys_connect+0x313/0x440
[  371.481713][ T8700]  ? __pfx___sys_connect+0x10/0x10
[  371.481735][ T8700]  ? rcu_is_watching+0x15/0xb0
[  371.481763][ T8700]  __x64_sys_connect+0x7a/0x90
[  371.481780][ T8700]  do_syscall_64+0xfa/0x3b0
[  371.481805][ T8700]  ? lockdep_hardirqs_on+0x9c/0x150
[  371.481828][ T8700]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.481845][ T8700]  ? clear_bhb_loop+0x60/0xb0
[  371.481865][ T8700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.481882][ T8700] RIP: 0033:0x7f3c16b8e929
[  371.481897][ T8700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  371.481913][ T8700] RSP: 002b:00007f3c179d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  371.481932][ T8700] RAX: ffffffffffffffda RBX: 00007f3c16db5fa0 RCX: 00007f3c16b8e929
[  371.481945][ T8700] RDX: 000000000000001c RSI: 0000200000000340 RDI: 0000000000000006
[  371.481956][ T8700] RBP: 00007f3c16c10b39 R08: 0000000000000000 R09: 0000000000000000
[  371.481967][ T8700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  371.481978][ T8700] R13: 0000000000000000 R14: 00007f3c16db5fa0 R15: 00007ffe8343ce48
[  371.481998][ T8700]  </TASK>
[  371.482004][ T8700] 
[  371.730719][ T8700] Allocated by task 7822:
[  371.735059][ T8700]  kasan_save_track+0x3e/0x80
[  371.739745][ T8700]  __kasan_kmalloc+0x93/0xb0
[  371.744341][ T8700]  __kmalloc_cache_noprof+0x230/0x3d0
[  371.749719][ T8700]  rose_add_node+0x23a/0xde0
[  371.754315][ T8700]  rose_rt_ioctl+0xa48/0xfb0
[  371.758909][ T8700]  rose_ioctl+0x3ce/0x8b0
[  371.763237][ T8700]  sock_do_ioctl+0xd9/0x300
[  371.767750][ T8700]  sock_ioctl+0x576/0x790
[  371.772098][ T8700]  __se_sys_ioctl+0xfc/0x170
[  371.776688][ T8700]  do_syscall_64+0xfa/0x3b0
[  371.781204][ T8700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.787256][ T8700] 
[  371.789589][ T8700] Freed by task 8677:
[  371.793573][ T8700]  kasan_save_track+0x3e/0x80
[  371.798262][ T8700]  kasan_save_free_info+0x46/0x50
[  371.803301][ T8700]  __kasan_slab_free+0x62/0x70
[  371.808080][ T8700]  kfree+0x18e/0x440
[  371.811985][ T8700]  rose_rt_device_down+0x66d/0x6c0
[  371.817107][ T8700]  rose_device_event+0x603/0x6a0
[  371.822057][ T8700]  notifier_call_chain+0x1b6/0x3e0
[  371.827178][ T8700]  __dev_notify_flags+0x18d/0x2e0
[  371.832212][ T8700]  netif_change_flags+0xe8/0x1a0
[  371.837152][ T8700]  dev_change_flags+0x130/0x260
[  371.842009][ T8700]  dev_ioctl+0x7b4/0x1150
[  371.846344][ T8700]  sock_do_ioctl+0x22c/0x300
[  371.850948][ T8700]  sock_ioctl+0x576/0x790
[  371.855278][ T8700]  __se_sys_ioctl+0xfc/0x170
[  371.859869][ T8700]  do_syscall_64+0xfa/0x3b0
[  371.864375][ T8700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  371.870269][ T8700] 
[  371.872593][ T8700] The buggy address belongs to the object at ffff888055eb4800
[  371.872593][ T8700]  which belongs to the cache kmalloc-512 of size 512
[  371.886650][ T8700] The buggy address is located 48 bytes inside of
[  371.886650][ T8700]  freed 512-byte region [ffff888055eb4800, ffff888055eb4a00)
[  371.900363][ T8700] 
[  371.902688][ T8700] The buggy address belongs to the physical page:
[  371.909093][ T8700] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xffff888055eb6400 pfn:0x55eb4
[  371.919154][ T8700] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  371.927650][ T8700] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[  371.936167][ T8700] page_type: f5(slab)
[  371.940152][ T8700] raw: 00fff00000000240 ffff88801a441c80 ffffea000158b710 ffffea000159f710
[  371.948736][ T8700] raw: ffff888055eb6400 000000000010000b 00000000f5000000 0000000000000000
[  371.957329][ T8700] head: 00fff00000000240 ffff88801a441c80 ffffea000158b710 ffffea000159f710
[  371.966003][ T8700] head: ffff888055eb6400 000000000010000b 00000000f5000000 0000000000000000
[  371.974674][ T8700] head: 00fff00000000002 ffffea000157ad01 00000000ffffffff 00000000ffffffff
[  371.983342][ T8700] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  371.992012][ T8700] page dumped because: kasan: bad access detected
[  371.998430][ T8700] page_owner tracks the page as allocated
[  372.004143][ T8700] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5816, tgid 5816 (syz-executor), ts 85542525724, free_ts 25291853606
[  372.025515][ T8700]  post_alloc_hook+0x240/0x2a0
[  372.030289][ T8700]  get_page_from_freelist+0x21d5/0x22b0
[  372.035852][ T8700]  __alloc_frozen_pages_noprof+0x181/0x370
[  372.041688][ T8700]  alloc_pages_mpol+0x232/0x4a0
[  372.046583][ T8700]  allocate_slab+0x8a/0x3b0
[  372.051122][ T8700]  ___slab_alloc+0xbfc/0x1480
[  372.055809][ T8700]  __kmalloc_noprof+0x305/0x4f0
[  372.060687][ T8700]  fib6_info_alloc+0x30/0xf0
[  372.065291][ T8700]  ip6_route_info_create+0x142/0x860
[  372.070593][ T8700]  ip6_route_add+0x49/0x1b0
[  372.075099][ T8700]  addrconf_add_dev+0x24f/0x340
[  372.079967][ T8700]  inet6_addr_add+0x1a1/0xc00
[  372.084670][ T8700]  inet6_rtm_newaddr+0x93d/0xd20
[  372.089632][ T8700]  rtnetlink_rcv_msg+0x7cc/0xb70
[  372.094581][ T8700]  netlink_rcv_skb+0x205/0x470
[  372.099346][ T8700]  netlink_unicast+0x758/0x8d0
[  372.104137][ T8700] page last free pid 1 tgid 1 stack trace:
[  372.109952][ T8700]  __free_frozen_pages+0xc65/0xe60
[  372.115093][ T8700]  free_contig_range+0x1bd/0x4a0
[  372.120050][ T8700]  destroy_args+0x7e/0x5d0
[  372.124500][ T8700]  debug_vm_pgtable+0x412/0x450
[  372.129488][ T8700]  do_one_initcall+0x233/0x820
[  372.134270][ T8700]  do_initcall_level+0x137/0x1f0
[  372.139226][ T8700]  do_initcalls+0x69/0xd0
[  372.143571][ T8700]  kernel_init_freeable+0x3d9/0x570
[  372.148786][ T8700]  kernel_init+0x1d/0x1d0
[  372.153130][ T8700]  ret_from_fork+0x3fc/0x770
[  372.157739][ T8700]  ret_from_fork_asm+0x1a/0x30
[  372.162513][ T8700] 
[  372.164831][ T8700] Memory state around the buggy address:
[  372.170454][ T8700]  ffff888055eb4700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  372.178513][ T8700]  ffff888055eb4780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  372.186575][ T8700] >ffff888055eb4800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  372.194640][ T8700]                                      ^
[  372.200265][ T8700]  ffff888055eb4880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  372.208322][ T8700]  ffff888055eb4900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  372.216378][ T8700] ==================================================================
[  372.224646][ T8700] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  372.231871][ T8700] CPU: 0 UID: 0 PID: 8700 Comm: syz.3.783 Not tainted 6.16.0-rc4-syzkaller #0 PREEMPT(full) 
[  372.242041][ T8700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  372.252113][ T8700] Call Trace:
[  372.255410][ T8700]  <TASK>
[  372.258359][ T8700]  dump_stack_lvl+0x99/0x250
[  372.262975][ T8700]  ? __asan_memcpy+0x40/0x70
[  372.267584][ T8700]  ? __pfx_dump_stack_lvl+0x10/0x10
[  372.272805][ T8700]  ? __pfx__printk+0x10/0x10
[  372.277417][ T8700]  panic+0x2db/0x790
[  372.281334][ T8700]  ? __pfx_panic+0x10/0x10
[  372.285758][ T8700]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[  372.291663][ T8700]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  372.297568][ T8700]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  372.303913][ T8700]  ? print_memory_metadata+0x314/0x400
[  372.309382][ T8700]  ? rose_get_neigh+0x391/0x990
[  372.314241][ T8700]  check_panic_on_warn+0x89/0xb0
[  372.319185][ T8700]  ? rose_get_neigh+0x391/0x990
[  372.324048][ T8700]  end_report+0x78/0x160
[  372.328292][ T8700]  kasan_report+0x129/0x150
[  372.332802][ T8700]  ? rose_get_neigh+0x391/0x990
[  372.337668][ T8700]  rose_get_neigh+0x391/0x990
[  372.342366][ T8700]  rose_connect+0x416/0x10a0
[  372.346963][ T8700]  ? __pfx_smack_socket_connect+0x10/0x10
[  372.352704][ T8700]  ? __might_fault+0xb0/0x130
[  372.357399][ T8700]  ? __pfx_rose_connect+0x10/0x10
[  372.362438][ T8700]  ? tomoyo_socket_connect_permission+0x164/0x290
[  372.368873][ T8700]  ? bpf_lsm_socket_connect+0x9/0x20
[  372.374167][ T8700]  __sys_connect+0x313/0x440
[  372.378765][ T8700]  ? __pfx___sys_connect+0x10/0x10
[  372.383887][ T8700]  ? rcu_is_watching+0x15/0xb0
[  372.388667][ T8700]  __x64_sys_connect+0x7a/0x90
[  372.393438][ T8700]  do_syscall_64+0xfa/0x3b0
[  372.397968][ T8700]  ? lockdep_hardirqs_on+0x9c/0x150
[  372.403192][ T8700]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.409261][ T8700]  ? clear_bhb_loop+0x60/0xb0
[  372.413948][ T8700]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  372.419840][ T8700] RIP: 0033:0x7f3c16b8e929
[  372.424260][ T8700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  372.443875][ T8700] RSP: 002b:00007f3c179d0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  372.452299][ T8700] RAX: ffffffffffffffda RBX: 00007f3c16db5fa0 RCX: 00007f3c16b8e929
[  372.460279][ T8700] RDX: 000000000000001c RSI: 0000200000000340 RDI: 0000000000000006
[  372.468260][ T8700] RBP: 00007f3c16c10b39 R08: 0000000000000000 R09: 0000000000000000
[  372.476321][ T8700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  372.484300][ T8700] R13: 0000000000000000 R14: 00007f3c16db5fa0 R15: 00007ffe8343ce48
[  372.492288][ T8700]  </TASK>
[  372.495625][ T8700] Kernel Offset: disabled
[  372.499954][ T8700] Rebooting in 86400 seconds..